### [CVE-2020-9727](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9727)
![](https://img.shields.io/static/v1?label=Product&message=InDesign&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%3C%3D%2015.1.1%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Access%20of%20Memory%20Location%20After%20End%20of%20Buffer%20(CWE-788)&color=brighgreen)

### Description

A memory corruption vulnerability exists in InDesign 15.1.1 (and earlier versions). Insecure handling of a malicious indd file could be abused to cause an out-of-bounds memory access, potentially resulting in code execution in the context of the current user.

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/404notf0und/CVE-Flow
- https://github.com/Cheroxx/Patch-Tuesday-Updates