118 matches found
CVE-2021-39862
Adobe FrameMaker (versions 2019 Update 8 and earlier; 2020 Release Update 2 and earlier) contains an out-of-bounds read vulnerability in PostScript file parsing that could disclose memory and bypass ASLR. Exploitation requires a user to open a malicious file, enabling memory disclosure with poten...
CVE-2025-30295
Adobe FrameMaker is affected by CVE-2025-30295: a heap-based buffer overflow in FrameMaker 2020.8, 2022.6 and earlier could allow arbitrary code execution in the user’s context. Exploitation requires user interaction (opening a malicious file). The issue is addressed by Adobe’s APSB25-33 security...
CVE-2020-3720
Adobe FrameMaker 2019.0.4 and earlier are affected by an out-of-bounds write vulnerability (CVE-2020-3720) that could allow arbitrary code execution. The issue is confirmed across multiple sources in the connected set, including Red Hat and NVD entries, and is addressed by the APSB20-04 advisory,...
CVE-2020-3726
Adobe FrameMaker 2019.0.4 and earlier are affected by CVE-2020-3726, an out-of-bounds write vulnerability that could allow arbitrary code execution. Red Hat and CVE lists corroborate the issue in FrameMaker, with multiple vendors referencing the same vulnerability family. The vulnerability affect...
CVE-2020-3731
Adobe FrameMaker 2019.0.4 and earlier versions are affected by CVE-2020-3731, a heap overflow that could allow arbitrary code execution. The issue affects FrameMaker on Windows, with a patch available in version 2019.0.5 (per APSB20-04). The connected sources confirm the vulnerability type as a h...
CVE-2020-9634
Adobe FrameMaker is affected version-wise: 2019.0.5 and earlier (Windows). The CVEs (CVE-2020-9634, CVE-2020-9635, CVE-2020-9636) describe an out-of-bounds write and a memory-corruption flaw that can lead to arbitrary code execution. Public sources (APSB20-32, Nessus plugin) indicate fixes in 201...
CVE-2021-39835
CVE-2021-39835 affects Adobe FrameMaker 2019 Update 8 and earlier, and 2020 Release Update 2 and earlier. The issue is a use-after-free in the PDF file processing path that can disclose memory contents. Exploitation requires user interaction (opening a malicious PDF). Various connected sources co...
CVE-2025-30303
Summary: CVE-2025-30303 affects Adobe FrameMaker up to 2020.8 and 2022.6 and earlier, due to an out-of-bounds read that can disclose memory. Impact is memory disclosure; mitigations like ASLR may be bypassed. Exploitation requires user interaction (victim opens a malicious file). Connected source...
CVE-2020-3721
Adobe FrameMaker 2019.0.4 and earlier are affected by CVE-2020-3721: an out-of-bounds write that could lead to arbitrary code execution. The vulnerability exists in FrameMaker’s handling of input that triggers memory corruption. Public sources in the connected documents confirm this risk and note...
CVE-2020-9636
Adobe FrameMaker 2019 installations running 2019.0.5 or earlier are affected by a memory corruption vulnerability (CVE-2020-9636) that could allow arbitrary code execution. The issue stems from memory management errors in Framemaker’s processing, enabling code execution upon successful exploit. R...
CVE-2021-28596
CVE-2021-28596 affects Adobe FrameMaker; out-of-bounds write during parsing of a crafted file could allow arbitrary code execution under the current user. Affected versions include FrameMaker 2020.0.1 (and earlier) and 2019.0.8 (and earlier). Exploitation requires user interaction (victim opens a...
CVE-2023-21622
Adobe FrameMaker is affected by CVE-2023-21622 (out-of-bounds write) that could allow arbitrary code execution in the context of the current user. Affected: FrameMaker 2020 Update 4 and earlier, and FrameMaker 2022 and earlier. Root cause: out-of-bounds write in the font parsing component. Attack...
CVE-2020-3722
CVE-2020-3722 affects Adobe FrameMaker 2019.0.4 and earlier. The vulnerability is an out-of-bounds write that could allow arbitrary code execution. Red Hat’s advisory and multiple third-party sources corroborate the same description. A patch exists: FrameMaker 2019.0.5 (per APSB20-04) to address ...
CVE-2025-30302
CVE-2025-30302 affects Adobe FrameMaker: vulnerable in FrameMaker versions 2020.8, 2022.6 and earlier due to an out-of-bounds read that can disclose memory and bypass ASLR. Exploitation requires user interaction (victim opens a malicious file). Several connected sources confirm affected versions ...
CVE-2020-3740
Adobe FrameMaker 2019 and earlier (notably 2019.0.4 and below) are affected by a memory corruption vulnerability that could allow arbitrary code execution when users open or process certain content. Multiple sources summary (including APSB20-04) state the issue arises from memory corruption/buffe...
CVE-2024-47425
CVE-2024-47425 refers to a vulnerability in Adobe FrameMaker (versions affected: 2020.6, 2022.4 and earlier) where an integer underflow/wraparound could enable arbitrary code execution in the context of the current user. Exploitation requires the user to open a malicious file. No exploit details ...
CVE-2020-3724
CVE-2020-3724 affects Adobe FrameMaker 2019.0.4 and earlier; the issue is an out-of-bounds write (RGB/file parsing) that could allow arbitrary code execution. Red Hat/Nessus/ZDI references confirm FrameMaker RGB parsing OOB write as the root cause. A fix is available in FrameMaker 2019.0.5 (APSB2...
CVE-2020-3727
Adobe FrameMaker 2019.0.4 and earlier on Windows are affected by an out-of-bounds write vulnerability (CVE-2020-3727) that could lead to arbitrary code execution. The related Nessus/APS B20-04 advisory notes multiple concurrent flaws in FrameMaker (and other products) with a patch that raises Fra...
CVE-2020-3730
Adobe FrameMaker 2019.0.4 and earlier is affected by CVE-2020-3730, an out‑of‑bounds write that could lead to arbitrary code execution. Red Hat and NVD entries, along with ZDI advisories and APSB20‑04, confirm the flaw type and impact. The vulnerability is tied to RGB file parsing (out‑of‑bounds ...
CVE-2024-47422
Adobe FrameMaker (versions 2020.6, 2022.4 and earlier) is affected by CVE-2024-47422, an Untrusted Search Path vulnerability that could allow arbitrary code execution when a malicious path is found in search directories. The issue is a local vulnerability with user interaction required, and the r...
CVE-2025-30296
CVE-2025-30296 : Adobe FrameMaker, vulnerable in versions 2020.8, 2022.6 and earlier, suffers an Integer Underflow (Wrap or Wraparound) that can enable arbitrary code execution in the context of the current user. Exploitation requires user interaction (the victim must open a malicious file). Affe...
CVE-2025-30304
The CVE-2025-30304 issue affects Adobe FrameMaker versions 2020.8, 2022.6 and earlier, with an out-of-bounds write that could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction (opening a malicious file). The root cause is a memory/write vuln...
CVE-2020-3728
Adobe FrameMaker 2019.0.4 and earlier versions are affected by an out-of-bounds write vulnerability (CVE-2020-3728). The flaw could enable arbitrary code execution when processing content, as described across multiple sources (NVD/Adobe advisories). Red Hat and ZDI references corroborate a remote...
CVE-2020-3738
CVE-2020-3738 affects Adobe FrameMaker 2019.0.4 and earlier; it is an out-of-bounds write vulnerability that could lead to arbitrary code execution on successful exploitation. The Red Hat/Nessus/NVD and ThreatPost entries corroborate the same description and indicate that a patch exists in versio...
CVE-2020-3729
CVE-2020-3729 affects Adobe FrameMaker 2019.0.4 and earlier on Windows, with an out-of-bounds write vulnerability that could allow arbitrary code execution. The issue is addressed by Adobe’s APSB20-04 patch (FrameMaker 2019.0.5). Nessus/ThreatPost documentation corroborate the vulnerability class...
CVE-2020-3737
CVE-2020-3737: Adobe FrameMaker 2019.0.4 and earlier contains an out-of-bounds write vulnerability that could allow arbitrary code execution. Multiple connected sources confirm the flaw affecting FrameMaker and note a patch is available in version 2019.0.5 (per APSB20-04). The vulnerability stems...
CVE-2025-30301
Adobe FrameMaker is affected by a NULL Pointer Dereference in versions 2020.8, 2022.6 and earlier, leading to potential denial-of-service when a user opens a crafted file. The issue is triggered by user interaction (opening a malicious file). Mitigation: Adobe released APSB25-33 with fixes for Fr...
CVE-2020-3732
CVE-2020-3732 affects Adobe FrameMaker 2019.0.4 and earlier, with an out-of-bounds write that could lead to arbitrary code execution. Related sources confirm remote-code-execution potential (e.g., IFF file parsing) and indicate a patch is available: FrameMaker 2019.0.5 mitigates the issue (APSB20...
CVE-2024-47421
Adobe FrameMaker is affected by an out-of-bounds read vulnerability in the parsing of crafted files for FrameMaker 2020.6, 2022.4, and earlier. The underlying issue allows an attacker to execute code in the user’s context, with exploitation requiring user interaction (victim must open a malicious...
CVE-2020-3736
Adobe FrameMaker 2019.0.4 and earlier are affected by CVE-2020-3736, an out-of-bounds write that could allow arbitrary code execution. A patch exists in 2019.0.5 (APSB20-04); users should upgrade to mitigate. Affected platforms noted include Windows; see APSB20-04 for details.
CVE-2020-3725
Adobe FrameMaker 2019.0.4 and earlier on Windows are affected by an out-of-bounds write vulnerability (CVE-2020-3725). Successful exploitation could lead to arbitrary code execution. A patch is available: upgrade to FrameMaker 2019.0.5 (APSB20-04). Other sources in the connected set reference rel...
CVE-2018-15974
CVE-2018-15974 affects Adobe FrameMaker on Windows, with versions 1.0.5.1 and earlier vulnerable to an insecure library loading (DLL hijacking) flaw that could enable privilege escalation on successful exploitation. Several connected sources corroborate this flaw and tie it to insecure DLL loadin...
CVE-2020-3735
CVE-2020-3735 is a heap overflow vulnerability in Adobe FrameMaker 2019.0.4 and earlier that could allow arbitrary code execution. The Red Hat entry and the threat/intelligence sources align on the affected product version range and the possibility of remote/desk-exploitation related to memory co...
CVE-2024-47424
Adobe FrameMaker (versions 2020.6, 2022.4 and earlier) is affected by an Integer Overflow or Wraparound vulnerability that can lead to arbitrary code execution in the current user context. Exploitation requires the user to open a malicious file (user interaction). Connected advisories indicate a ...
CVE-2024-47423
Adobe FrameMaker (versions 2020.6, 2022.4 and earlier) is affected by CVE-2024-47423: Unrestricted Upload of File with Dangerous Type, which could lead to arbitrary code execution when a user opens or processes a malicious file. Exploitation requires user interaction. The vulnerability is documen...
CVE-2025-47131
CVE-2025-47131 affects Adobe FrameMaker 2020.8, 2022.6 and earlier, due to a heap-based buffer overflow that can lead to arbitrary code execution in the current user context. Exploitation requires user interaction (opening a malicious file). Connected sources confirm the issue and point to availa...
CVE-2025-47120
Summary: CVE-2025-47120 affects Adobe FrameMaker 2020.8, 2022.6 and earlier. The issue is a stack-based buffer overflow in FrameMaker that can disclose memory contents. Exploitation requires user interaction (the victim must open a malicious file). What’s known from connected sources: The vulnera...
CVE-2025-47122
Adobe FrameMaker (versions 2020.8, 2022.6 and earlier) contains a heap-based buffer overflow that could allow arbitrary code execution in the current user context. Exploitation requires user interaction (opening a malicious file). A security update (APSB25-66) exists; remediation is to upgrade to...
CVE-2025-47123
Adobe FrameMaker 2020.8, 2022.6 and earlier are affected by a Heap-based Buffer Overflow that can lead to arbitrary code execution in the context of the current user. Exploitation requires user interaction (opening a malicious file). Remediation: Adobe released APSB25-66 security updates addressi...
CVE-2025-47128
Adobe FrameMaker is affected by CVE-2025-47128 (Integer Underflow). Affected versions are 2020.8, 2022.6 and earlier. The issue could allow arbitrary code execution in the context of the current user, and exploitation requires the user to open a malicious file. Vendor advisories indicate remediat...
CVE-2025-47133
Adobe FrameMaker (versions 2020.8, 2022.6 and earlier) is affected by CVE-2025-47133, an out-of-bounds write vulnerability that could lead to arbitrary code execution in the context of the current user. Exploitation requires user interaction (victim must open a malicious file). Multiple connected...
CVE-2025-47124
CVE-2025-47124 affects Adobe FrameMaker: versions 2020.8, 2022.6 and earlier are vulnerable to an out-of-bounds write that could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction (opening a specially crafted file). Connected sources corrobor...
CVE-2026-27292
Adobe Framemaker versions 2022.8 and earlier are affected by a Use-After-Free vulnerability that could enable arbitrary code execution in the invoking user’s context. Exploitation requires user interaction: the victim must open a specially crafted file. The CVE-2026-27292 entry identifies the aff...
CVE-2025-47119
Adobe FrameMaker (versions 2020.8, 2022.6 and earlier) contains a NULL Pointer Dereference vulnerability that can crash the application and cause a denial of service. The issue requires user interaction (victim opens a malicious file) and is described across multiple sources as a vulnerability in...
CVE-2025-47121
Summary: CVE-2025-47121 affects Adobe FrameMaker 2020.8, 2022.6 and earlier. It is an Access of Uninitialized Pointer vulnerability that could lead to arbitrary code execution in the context of the current user. Exploitation requires user interaction (open a malicious file). Affected software: Fr...
CVE-2025-47125
Adobe FrameMaker (versions 2020.8, 2022.6 and earlier) is affected by a heap-based buffer overflow that can enable arbitrary code execution in the context of the current user. Exploitation requires user interaction (victim must open a malicious file). Impact is high (remote code execution). The C...
CVE-2025-47129
Adobe FrameMaker 2020.8, 2022.6 and earlier are affected by an out-of-bounds write vulnerability (CWE-787) that could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction: a victim must open a specially crafted file. A CVSSv3.1 score of 7.8 (HI...
CVE-2025-47126
Summary: CVE-2025-47126 affects Adobe FrameMaker 2020.8, 2022.6 and earlier. The issue is an out-of-bounds write in FrameMaker that could allow arbitrary code execution in the current user context . Exploitation requires user interaction—victim must open a specially crafted file. Connected source...
CVE-2025-47130
CVE-2025-47130 affects Adobe FrameMaker versions 2020.8, 2022.6 and earlier. The vulnerability is an Integer Underflow (Wrap or Wraparound) that could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction—victims must open a malicious file. Conn...
CVE-2025-54229
CVE-2025-54229 affects Adobe FrameMaker versions 2020.8, 2022.6 and earlier. The issue is a Use-After-Free vulnerability that could lead to arbitrary code execution in the current user context . Exploitation requires user interaction (opening a malicious file). Connected sources indicate the vuln...