Question 1

What is CVE-2023-21588 — CVE-2023-21588?

Accepted Answer

Adobe InDesign version 18.0 (and earlier), 17.4 (and earlier) are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Question 2

What is the authoritative source for CVE-2023-21588?

Accepted Answer

CVE-2023-21588 (CVE-2023-21588) is catalogued in NVD + CISA KEV + FIRST EPSS and curated for EU compliance use cases by SQUR.

CVSS	7.8 ()
Vector	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS	0.33% probability of exploitation · percentile 24.2% · 2026-06-18T12:00:27Z
Last modified	2026-06-17

CVE-2023-21588CVE-2023-21588

Description

Scoring