118 matches found
CVE-2025-47132
CVE-2025-47132 affects Adobe FrameMaker 2020.8 through 2022.6 and earlier. The vulnerability is an out-of-bounds write that could enable arbitrary code execution in the context of the current user. Exploitation requires user interaction (victim must open a specially crafted file). The issue is co...
CVE-2025-54230
Adobe FrameMaker is affected by a Use After Free vulnerability (CWE-416) in versions 2020.8, 2022.6 and earlier, potentially enabling arbitrary code execution in the attacker’s context. Exploitation requires user interaction: a victim must open a specially crafted file. The issue stems from use-a...
CVE-2026-27301
Adobe Framemaker 2022.8 and earlier is affected by a heap-based buffer overflow that can disclose memory contents. Exploitation requires user interaction: the victim must open a malicious file. CVSS v3.1 indicates LOCAL attack vector, LOW attack complexity, NONE privileges, and UI:R with CONFIDEN...
CVE-2025-47127
CVE-2025-47127 affects Adobe FrameMaker 2020.8 through 2022.6 (and earlier) with an out-of-bounds write that can allow arbitrary code execution in the context of the current user. Exploitation requires user interaction via opening a malicious file. The issue is documented across multiple feeds (N...
CVE-2025-54231
Adobe FrameMaker (versions 2020.8, 2022.6 and earlier) is affected by a Use After Free vulnerability (CWE-416) that can allow arbitrary code execution in the attacker’s context. Exploitation requires the user to open a malicious file. Remediation per the provided documents: apply updates released...
CVE-2025-54232
Adobe FrameMaker has a Use After Free vulnerability (CVE-2025-54232) affecting versions 2020.8, 2022.6 and earlier. Exploitation requires the user to open a malicious file, with potential arbitrary code execution in the user’s context. Connected sources confirm affected versions and the vulnerabi...
CVE-2025-54281
Adobe FrameMaker has a Use After Free vulnerability (CWE-416) affecting versions 2020.9, 2022.7 and earlier, allowing arbitrary code execution in the current user’s context. Exploitation requires user interaction (opening a malicious file). A fix is available: update to a version later than 2022....
CVE-2026-27295
Adobe Framemaker: CVE-2026-27295 affects Framemaker 2022.8 and earlier due to an out-of-bounds write; could allow arbitrary code execution in the current user's context. Exploitation requires user interaction (victim must open a malicious file) and is a local access issue with high impact to conf...
CVE-2025-54233
Adobe FrameMaker versions 2020.8, 2022.6 and earlier are affected by an out-of-bounds read (CWE-125) vulnerability that can disclose memory. Exploitation requires user interaction (open a malicious file). Remediation: update to versions later than 2022.6 and later than 2020.8 (per PT-2025-32952; ...
CVE-2025-54282
CVE-2025-54282 affects Adobe FrameMaker 2020.9, 2022.7 and earlier. The issue is a Heap-based Buffer Overflow in Framemaker that can lead to arbitrary code execution in the context of the current user. Exploitation requires user interaction: the victim must open a specially crafted malicious file...
CVE-2026-27298
Adobe Framemaker (versions 2022.8 and earlier) is affected by a Type Confusion vulnerability (Access of Resource Using Incompatible Type) that could lead to arbitrary code execution in the context of the current user. Exploitation requires user interaction : a victim must open a malicious file. C...
CVE-2026-27299
CVE-2026-27299 affects Adobe FrameMaker 2022.8 and earlier and is caused by improper input validation that can lead to arbitrary file system read. The vulnerability requires a user to open a malicious file, enabling an attacker to access sensitive data on the local system. The CVSSv3.1 base score...
CVE-2026-27297
CVE-2026-27297 affects Adobe FrameMaker 2022.8 and earlier. The vulnerability is an Integer Underflow/Wrap or Wraparound in FrameMaker, potentially allowing arbitrary code execution in the current user context. Exploitation requires user interaction: a victim must open a malicious file. Affected ...
CVE-2026-27300
CVE-2026-27300 affects Adobe FrameMaker 2022.8 and earlier. The issue is an Access of Uninitialized Pointer that could lead to memory exposure. An attacker could disclose sensitive information, with exploitation requiring the victim to open a malicious file (user interaction). The provided connec...
CVE-2026-27293
Adobe FrameMaker up to version 2022.8 is affected by a Heap-based Buffer Overflow that can lead to arbitrary code execution in the context of the current user. Exploitation requires user interaction: a victim must open a malicious file. Affected software: FrameMaker 2022.8 and earlier. CVSS v3.1 ...
CVE-2026-27294
Adobe Framemaker (versions 2022.8 and earlier) is affected by an out-of-bounds read when parsing a crafted file, potentially allowing code execution in the attacker’s context. Exploitation requires user interaction: a victim must open a malicious file. The issue is documented with a CVSSv3.1 base...
CVE-2026-27290
CVE-2026-27290 affects Adobe FrameMaker up to version 2022.8. It describes an Untrusted Search Path vulnerability where an attacker could modify the search path to execute a malicious program, potentially running with the current user’s privileges. Exploitation does not require user interaction. ...
CVE-2026-27296
CVE-2026-27296 affects Adobe FrameMaker versions 2022.8 and earlier. A vulnerability in an Integer Underflow (wrap/wraparound) could lead to arbitrary code execution in the context of the current user. Exploitation requires the victim to open a malicious file (user interaction) and is rated High ...