China National Vulnerability DatabaseCNVD-2021-102813Adobe Framemaker Buffer Overflow Vulnerability (CNVD-2021-102813)
3.3 Low
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
Adobe Framemaker is a page layout software for writing and editing large or complex documents, including structured documents, from Adobe.Adobe Framemaker suffers from a buffer overflow vulnerability that originates when a network system or product performs an operation in memory that does not properly validate data boundaries, resulting in an incorrect read or write operation to an associated other incorrect read and write operations are performed to other memory locations. An attacker could use this vulnerability to cause a buffer overflow or heap overflow, among other things.
| CPE | Name | Operator | Version |
|---|---|---|---|
| Adobe Framemaker | le | 2019.0.8 | |
| Adobe Framemaker >=2020.0.1, | le | 2020.0.2 |
Related
3.3 Low
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N