{"vulnerability": "CVE-2025-2115", "sightings": [{"uuid": "38e8f81d-ba43-4df4-8e8a-482fbd9ab1b4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21157", "type": "seen", "source": "https://t.me/cvedetector/17717", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-21157 - Adobe InDesign Out-of-Bounds Write Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-21157 \nPublished : Feb. 11, 2025, 5:15 p.m. | 58\u00a0minutes ago \nDescription : InDesign Desktop versions ID20.0, ID19.5.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. \nSeverity: 7.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"11 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-11T19:52:47.000000Z"}, {"uuid": "bf6f2b7c-56c2-445f-9aa7-f305b4327131", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21158", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/6040", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-21158\n\ud83d\udd25 CVSS Score: 7.8 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: InDesign Desktop versions ID20.0, ID19.5.1 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.\n\ud83d\udccf Published: 2025-02-11T17:10:47.804Z\n\ud83d\udccf Modified: 2025-03-01T04:55:54.837Z\n\ud83d\udd17 References:\n1. https://helpx.adobe.com/security/products/indesign/apsb25-01.html", "creation_timestamp": "2025-03-01T05:27:06.000000Z"}, {"uuid": "521c114a-0fea-4c10-91a8-d9fb69277a74", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21157", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/6041", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-21157\n\ud83d\udd25 CVSS Score: 7.8 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: InDesign Desktop versions ID20.0, ID19.5.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.\n\ud83d\udccf Published: 2025-02-11T17:10:45.344Z\n\ud83d\udccf Modified: 2025-03-01T04:55:53.513Z\n\ud83d\udd17 References:\n1. https://helpx.adobe.com/security/products/indesign/apsb25-01.html", "creation_timestamp": "2025-03-01T05:27:07.000000Z"}, {"uuid": "0eca9ea2-39b7-4cea-8ea4-c975b2c1e0d8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2115", "type": "seen", "source": "Telegram/2Ot3chEDsmDF1YgnWYvxbGjfg8VxEBGtQZIfoiXMnXrMRxTu", "content": "", "creation_timestamp": "2025-03-10T14:45:04.000000Z"}, {"uuid": "bd5ee3a4-9d3b-4b3f-b348-b8fc18d46dc1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2115", "type": "seen", "source": "MISP/4d9e0694-2872-4bfc-8eee-f1ab846c5ab0", "content": "", "creation_timestamp": "2025-08-19T04:06:34.000000Z"}, {"uuid": "8e42885f-1d32-44ce-9729-5d5362ba8092", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2115", "type": "seen", "source": "Telegram/C0TFlwi8EvGC4AjEJI7j6XiiBiVQph3KrBke9fkpgQ6LeWbh", "content": "", "creation_timestamp": "2025-03-09T10:38:05.000000Z"}, {"uuid": "cf9553bc-0121-4f47-ad04-0305cd1a71f3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21158", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lhw5zcjpfd2x", "content": "", "creation_timestamp": "2025-02-11T17:17:07.123791Z"}, {"uuid": "5e4535db-44fa-4e05-aa1b-f0f03424c5b8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21157", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lhw5za3od32x", "content": "", "creation_timestamp": "2025-02-11T17:17:04.644848Z"}, {"uuid": "c11c251d-82f1-41ba-ae3d-b778fd4c3be7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21157", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113986426890550327", "content": "", "creation_timestamp": "2025-02-11T17:27:24.578915Z"}, {"uuid": "c7316f7e-39fe-46f3-a4fc-b3b067c2faa9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21158", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113986426904540437", "content": "", "creation_timestamp": "2025-02-11T17:27:24.738032Z"}, {"uuid": "e3334722-ee1f-4261-b002-b6c55e7a9cfa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21159", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113986445312893821", "content": "", "creation_timestamp": "2025-02-11T17:32:05.379020Z"}, {"uuid": "d6c1f195-fb7d-4e1b-8e92-7fac465386bb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21155", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lhwbcpshtw2a", "content": "", "creation_timestamp": "2025-02-11T18:16:04.941753Z"}, {"uuid": "1f212a45-75c6-48f9-a1a7-fc764da5882d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21156", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lhwbcsgt2y2z", "content": "", "creation_timestamp": "2025-02-11T18:16:07.267732Z"}, {"uuid": "6ee6ba45-4014-49c7-99ee-02285a09bd36", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21159", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lhwbcvdzh62a", "content": "", "creation_timestamp": "2025-02-11T18:16:10.262476Z"}, {"uuid": "778e3c34-9222-47a6-ae6e-00678a7a2d3c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2115", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3ljwhfycaym2s", "content": "", "creation_timestamp": "2025-03-09T06:55:40.805802Z"}, {"uuid": "d503c13a-aa20-4b47-b258-f6f0e5f14998", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2115", "type": "seen", "source": "MISP/4d9e0694-2872-4bfc-8eee-f1ab846c5ab0", "content": "", "creation_timestamp": "2025-08-16T01:45:14.000000Z"}, {"uuid": "d9e2f4f9-8de9-4492-aeff-5a8d6722ff0c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2115", "type": "seen", "source": "https://t.me/cvedetector/19916", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-2115 - \"zzskzy Warehouse Refinement Management System Unrestricted File Upload Vulnerability\"\", \n  \"Content\": \"CVE ID : CVE-2025-2115 \nPublished : March 9, 2025, 6:15 a.m. | 2\u00a0hours, 2\u00a0minutes ago \nDescription : A vulnerability, which was classified as critical, was found in zzskzy Warehouse Refinement Management System 3.1. Affected is the function ProcessRequest of the file /AcceptZip.ashx. The manipulation of the argument file leads to unrestricted upload. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way. \nSeverity: 6.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-09T09:35:12.000000Z"}, {"uuid": "136a84f1-7e27-49d8-b5f0-005c5b94a6d9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21158", "type": "seen", "source": "https://t.me/cvedetector/17718", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-21158 - Adobe InDesign Integer Underflow Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-21158 \nPublished : Feb. 11, 2025, 5:15 p.m. | 58\u00a0minutes ago \nDescription : InDesign Desktop versions ID20.0, ID19.5.1 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. \nSeverity: 7.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"11 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-11T19:52:47.000000Z"}, {"uuid": "03706e1d-0cf4-44f6-b03a-7862be1d7559", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2115", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/7014", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-2115\n\ud83d\udd25 CVSS Score: 5.3 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N)\n\ud83d\udd39 Description: A vulnerability, which was classified as critical, was found in zzskzy Warehouse Refinement Management System 3.1. Affected is the function ProcessRequest of the file /AcceptZip.ashx. The manipulation of the argument file leads to unrestricted upload. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.\n\ud83d\udccf Published: 2025-03-09T05:31:04.443Z\n\ud83d\udccf Modified: 2025-03-10T15:46:17.501Z\n\ud83d\udd17 References:\n1. https://vuldb.com/?id.299010\n2. https://vuldb.com/?ctiid.299010\n3. https://vuldb.com/?submit.506655\n4. https://github.com/heiheixz/report/blob/main/sk_1.md", "creation_timestamp": "2025-03-10T16:38:06.000000Z"}, {"uuid": "3cff8a0d-54e1-4a51-9360-0fbafd1887fe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2115", "type": "seen", "source": "Telegram/giT5pRdi2LWq5LxdeROHnZ7FR0eOYQsmUFdFrK5AWPfxcgPu", "content": "", "creation_timestamp": "2025-03-10T19:39:12.000000Z"}]}