The host is installed with Adobe InDesign 18.x before 18.4 or 17.x before 17.4.2 and is prone to an out-of-bounds write vulnerability. A flaw is present in the application, which fails to handle unspecified vectors. Successful exploitation allows attackers to execute arbitrary code.