QID 375853

Date Published: 2021-09-15

QID 375853: Adobe InCopy Arbitrary Code Execution Vulnerability (APSB21-71)

Adobe InCopy is a professional word processor made by Adobe.

Adobe InCopy is affected withArbitrary file system write and Arbitrary Code Execution Vulnerability.

Affected Versions:
Adobe InCopy 16.3.1 and earlier version for macOS
Adobe InCopy 16.3 and earlier version for Windows

QID Detection Logic (Authenticated):
This checks for vulnerable versions of InCopy.

Successful exploitation could lead to the arbitrary code execution.

  • CVSS V3 rated as Critical - 9.8 severity.
  • CVSS V2 rated as High - 7.6 severity.
  • Solution
    The vendor has released updates to fix the vulnerabilities. Please refer to Adobe advisory APSB21-71 for details.

    CVEs related to QID 375853

    Software Advisories
    Advisory ID Software Component Link
    APSB21-71 URL Logo helpx.adobe.com/security/products/incopy/apsb21-71.html