China National Vulnerability DatabaseCNVD-2021-102812Adobe Framemaker Buffer Overflow Vulnerability (CNVD-2021-102812)
3.3 Low
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
Adobe Framemaker is a page layout software for writing and editing large or complex documents, including structured documents, from Adobe.Adobe Framemaker has a buffer error vulnerability that originates when a network system or product does not properly validate data boundaries when performing operations in memory, resulting in an incorrect read or write operation to an associated other An incorrect read or write operation is performed to an associated memory location. An attacker could use this vulnerability to cause a buffer overflow or heap overflow, among other things.
| CPE | Name | Operator | Version |
|---|---|---|---|
| Adobe Framemaker | le | 2019.0.8 | |
| Adobe Framemaker >=2020.0.1, | le | 2020.0.2 |
Related
3.3 Low
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N