CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CNVD•added 2024/12/13 12:0 a.m.•1 views

Adobe Framemaker Buffer Overflow Vulnerability

Adobe FrameMaker is Adobe's development of professional-grade technical document creation and layout software, mainly used to deal with complex long-form structured content such as technical manuals, aviation documents, etc., support for XML/DITA standards, multilingual publishing and cross-media...

7.8CVSS7.7AI score0.00234EPSS

NCSC•added 2024/12/11 8:6 a.m.•2 views

Vulnerability fixed in Adobe Framemaker

Adobe has fixed a vulnerability in Adobe Framemaker Specifically for versions 2020.7, 2022.5 and earlier. The vulnerability is in the way Adobe Framemaker handles files. A malicious party can exploit this vulnerability by creating a malicious file and allowing it to be opened, which can lead to...

7.8CVSS7.4AI score0.00234EPSS

NVD•added 2024/12/10 10:15 p.m.•11 views

CVE-2024-53959

Adobe Framemaker versions 2020.7, 2022.5 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS0.00234EPSS

OSV•added 2024/12/10 10:15 p.m.•1 views

CVE-2024-53959

7.8CVSS6.3AI score

Vulnrichment•added 2024/12/10 9:26 p.m.•9 views

CVE-2024-53959 Adobe Framemaker | Stack-based Buffer Overflow (CWE-121)

7.8CVSS7.3AI score0.00234EPSS

CVE•added 2024/12/10 9:26 p.m.•60 views

CVE-2024-53959

CVE-2024-53959 affects Adobe FrameMaker versions 2020.7, 2022.5 and earlier, due to a Stack-based Buffer Overflow that can lead to arbitrary code execution in the current user’s context. Exploitation requires user interaction (victim opens a malicious file). The issue is corroborated across multi...

7.8CVSS7.5AI score0.00234EPSS

Exploits0References1Affected Software1

Cvelist•added 2024/12/10 9:26 p.m.•10 views

CVE-2024-53959 Adobe Framemaker | Stack-based Buffer Overflow (CWE-121)

7.8CVSS0.00234EPSS

CNNVD•added 2024/12/10 12:0 a.m.•1 views

Adobe Framemaker 安全漏洞

7.8CVSS7.6AI score0.00234EPSS

Positive Technologies•added 2024/12/10 12:0 a.m.•2 views

PT-2024-10271 · Adobe · Framemaker

Name of the Vulnerable Software and Affected Versions: Adobe Framemaker versions 2020.7, 2022.5 and earlier Description: The issue is a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. To exploit this problem, user...

7.8CVSS7.8AI score0.00234EPSS

Exploits0References6

Adobe•added 2024/12/10 12:0 a.m.•14 views

APSB24-106 : Security update available for Adobe FrameMaker

Adobe has released a security update for Adobe FrameMaker. This update addresses a critical vulnerability with a single Dynamic Link Library DLL on the Windows platform. Successful exploitation could lead to arbitrary code execution...

7.8CVSS8.1AI score0.00234EPSS

Exploits0

Tenable Nessus•added 2024/12/10 12:0 a.m.•12 views

Adobe FrameMaker 2020 < 16.0.7 (2020.0.7) / Adobe FrameMaker 2022 < 17.0.5 (2022.0.5) Arbitrary Code Execution (APSB24-106)

The version of Adobe FrameMaker installed on the remote Windows host is prior to Adobe FrameMaker 2020 16.0.7 / Adobe FrameMaker 2022 17.0.5. It is, therefore, affected by a vulnerability as referenced in the apsb24-106 advisory. - Adobe Framemaker versions 2020.7, 2022.5 and earlier are affected...

7.8CVSS6.4AI score0.00234EPSS

Exploits0References2

Positive Technologies•added 2024/12/10 12:0 a.m.•17 views

PT-2024-36017 · Undefined · Undefined

MS-ISAC CYBERSECURITY ADVISORYMS-ISAC CYBERSECURITY ADVISORY MS-ISAC ADVISORY NUMBER: 2024-134 DATES ISSUED: 12/10/2024 SUBJECT: Multiple Vulnerabilities in Adobe Products Could Allow for Arbitrary Code Execution OVERVIEW: Multiple vulnerabilities have been discovered in Adobe products, the most...

9.3CVSS10AI score0.0438EPSS

7.8CVSS6AI score0.00088EPSS

The vulnerability of the Adobe Framemaker desktop publishing system, related to the use of an unreliable search path, allows a hacker to execute arbitrary code in the context of the current user.

The vulnerability of the desktop publishing system Adobe Framemaker is related to the use of an insecure search path. Exploiting this vulnerability allows an attacker to execute arbitrary code within the context of the current user...

7.8CVSS6AI score0.0017EPSS

The vulnerability of the desktop publishing system Adobe Framemaker is related to a numerical overflow condition, which allows an attacker to execute arbitrary code.

The vulnerability of the desktop publishing system Adobe Framemaker is related to a potential overflow condition. Exploiting this vulnerability could allow an attacker to execute arbitrary code using a specially created file...

7.8CVSS5.8AI score0.00146EPSS

The vulnerability of the desktop publishing system Adobe Framemaker lies in the lack of restrictions on file downloads, which allows a hacker to execute arbitrary code.

The vulnerability of the desktop publishing system Adobe Framemaker lies in the lack of restrictions on file uploads. Exploiting this vulnerability allows an attacker to execute arbitrary code...

7.8CVSS6.2AI score0.00123EPSS

The vulnerability of the Adobe Framemaker desktop publishing system, related to reading beyond the buffer boundaries, allows a hacker to execute arbitrary code in the context of the current user.

The vulnerability of the desktop publishing system Adobe Framemaker relates to reading beyond the buffer boundaries. Exploiting this vulnerability allows an attacker to execute arbitrary code in the context of the current user, using a specially created file...