CVE-2026-21281

Description

InCopy versions 21.0, 19.5.5 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVSS Details

CVSS Score

7.8

Severity

HIGH

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Configurations (Affected Products)

cpe:2.3:a:adobe:incopy:*:*:*:*:*:*:*:* - VULNERABLE

cpe:2.3:a:adobe:incopy:21.0:*:*:*:*:*:*:* - VULNERABLE

cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:* - NOT VULNERABLE

cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* - NOT VULNERABLE

Adobe InCopy <= 21.0

Adobe InCopy <= 19.5.5

PoC / Exploit Code

⚠ For Security Research Only

The following code is for security research and authorized testing only.

python

# PoC代码示例
# 构造恶意InCopy文件触发堆缓冲区溢出
# 此PoC仅供安全研究使用

import struct

def create_malicious_incopy_file():
    # 恶意文件内容将触发缓冲区溢出
    poc_data = b'A' * 10000  # 超过缓冲区大小的数据
    return poc_data

References

[1] CVE.org https://www.cve.org/CVERecord?id=CVE-2026-21281
[2] NVD NIST https://nvd.nist.gov/vuln/detail/CVE-2026-21281
[3] CVE Details https://www.cvedetails.com/cve/CVE-2026-21281/
[4] VulDB https://vuldb.com/cve/CVE-2026-21281
[5] https://helpx.adobe.com/security/products/incopy/apsb26-04.html

Raw JSON Data

JSON

{"cve": {"id": "CVE-2026-21281", "sourceIdentifier": "[email protected]", "published": "2026-01-13T19:16:25.857", "lastModified": "2026-01-14T19:28:33.957", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [{"lang": "en", "value": "InCopy versions 21.0, 19.5.5 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file."}, {"lang": "es", "value": "Las versiones 21.0, 19.5.5 y anteriores de InCopy se ven afectadas por una vulnerabilidad de desbordamiento de búfer basado en montículo que podría resultar en ejecución de código arbitrario en el contexto del usuario actual. La explotación de este problema requiere interacción del usuario en el sentido de que una víctima debe abrir un archivo malicioso."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Primary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "baseScore": 7.8, "baseSeverity": "HIGH", "attackVector": "LOCAL", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "REQUIRED", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH"}, "exploitabilityScore": 1.8, "impactScore": 5.9}]}, "weaknesses": [{"source": "[email protected]", "type": "Primary", "description": [{"lang": "en", "value": "CWE-122"}]}, {"source": "[email protected]", "type": "Primary", "description": [{"lang": "en", "value": "CWE-787"}]}], "configurations": [{"operator": "AND", "nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:adobe:incopy:*:*:*:*:*:*:*:*", "versionEndExcluding": "20.5.1", "matchCriteriaId": "787164DB-0C13-412F-9E57-271AE10CB605"}, {"vulnerable": true, "criteria": "cpe:2.3:a:adobe:incopy:21.0:*:*:*:*:*:*:*", "matchCriteriaId": "74CF36EE-020C-4620-A213-9DAFF04E24BE"}]}, {"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": false, "criteria": "cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*", "matchCriteriaId": "387021A0-AF36-463C-A605-32EA7DAC172E"}, {"vulnerable": false, "criteria": "cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*", "matchCriteriaId": "A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]}], "references": [{"url": "https://helpx.adobe.com/security/products/incopy/apsb26-04.html", "source": "[email protected]", "tags": ["Vendor Advisory"]}]}}