51 matches found
CVE-2023-21584
Adobe FrameMaker is affected by a Use-After-Free vulnerability (CVE-2023-21584) in FrameMaker 2020 Update 4 and earlier, and FrameMaker 2022 and earlier. The flaw could disclose sensitive memory and may bypass ASLR. Exploitation requires user interaction (victim opens a malicious file). Remediati...
CVE-2024-30292
CVE-2024-30292 pertains to Adobe FrameMaker, affecting versions 2020.5 and 2022.3 and earlier. The issue is an out-of-bounds write in GIF file parsing that could enable arbitrary code execution in the context of the current user . Exploitation requires user interaction: a victim must open a malic...
CVE-2024-30287
Adobe FrameMaker 2020.5, 2022.3 and earlier are affected by an out-of-bounds read vulnerability that could disclose memory contents and bypass ASLR. Exploitation requires user interaction (victim opens a malicious file). Remediation is available via Adobe APSB24-37 updates (FrameMaker 2020 Update...
CVE-2025-30297
Adobe FrameMaker is affected by CVE-2025-30297 (out-of-bounds write) that can lead to arbitrary code execution in the user’s context. Affected versions include 2020.8 and 2022.6 and earlier; exploitation requires the victim to open a specially crafted file, i.e., user interaction. Connected advis...
CVE-2024-30291
CVE-2024-30291 affects Adobe FrameMaker 2020.5 and 2022.3 and earlier, due to an out-of-bounds write in TIF file parsing that could lead to arbitrary code execution in the current user context. Exploitation requires user interaction (victim opens a malicious file). Public details across connected...
CVE-2025-30298
Adobe FrameMaker is affected by a Stack-based Buffer Overflow (CVE-2025-30298) in versions 2020.8, 2022.6 and earlier. The issue can allow arbitrary code execution in the context of the current user and requires user interaction, as a victim must open a malicious file. Connected sources corrobora...
CVE-2023-21619
CVE-2023-21619 — Adobe FrameMaker font parsing out-of-bounds write . Affected: FrameMaker 2020 Update 4 and earlier, and 2022 and earlier. Root cause: out-of-bounds write could lead to arbitrary code execution in the user’s context. Exploitation requires user interaction: a victim must open a mal...
CVE-2023-21620
CVE-2023-21620 affects Adobe FrameMaker 2020 Update 4 and earlier, and 2022 and earlier. It is an out-of-bounds read vulnerability that could disclose memory and bypass ASLR. Exploitation requires user interaction (victim opens a malicious file). Connected sources indicate fixes in APSB23-06, wit...
CVE-2024-30283
Adobe FrameMaker (versions 2020.5, 2022.3 and earlier) is affected by an out-of-bounds read vulnerability in ICO file parsing that could disclose memory contents and bypass ASLR. Impact is memory disclosure with no integrity/availability impact stated; exploitation requires user interaction (vict...
CVE-2024-30289
CVE-2024-30289 affects Adobe FrameMaker; a Stack-based Buffer Overflow in the XLS file parsing can allow arbitrary code execution in the context of the current user. Affected versions are FrameMaker 2020.5 and 2022.3 and earlier. Exploitation requires user interaction: the victim must open a mali...
CVE-2024-30286
Adobe FrameMaker versions 2020.5, 2022.3 and earlier are affected by an out-of-bounds read vulnerability that could disclose memory and bypass ASLR. Exploitation requires user interaction (victim opens a malicious file). Affected components: DOC/File parsing in FrameMaker. CVE-2024-30286. Remedia...
CVE-2024-30290
CVE-2024-30290 affects Adobe FrameMaker 2020.5 and 2022.3 and earlier, with an out-of-bounds write in WEBP file parsing that can lead to arbitrary code execution in the context of the current user. Exploitation requires user interaction (the victim must open a malicious file). Remediation per the...
CVE-2023-21621
CVE-2023-21621 affects Adobe FrameMaker: FrameMaker 2020 Update 4 and earlier, and 2022 and earlier, are vulnerable to an Improper Input Validation flaw that could allow arbitrary code execution in the user’s context. Exploitation requires a user to open a malicious file. The issue is rated CVSSv...
CVE-2024-53959
CVE-2024-53959 affects Adobe FrameMaker versions 2020.7, 2022.5 and earlier, due to a Stack-based Buffer Overflow that can lead to arbitrary code execution in the current user’s context. Exploitation requires user interaction (victim opens a malicious file). The issue is corroborated across multi...
CVE-2025-30299
Adobe FrameMaker (versions 2020.8, 2022.6 and earlier) is affected by a heap-based buffer overflow that can lead to arbitrary code execution in the context of the current user. Exploitation requires user interaction (victim must open a malicious file). The vulnerability is described in CVE-2025-3...
CVE-2025-30300
Adobe FrameMaker is affected for versions 2020.8, 2022.6 and earlier by a NULL Pointer Dereference that can crash the application and cause a denial-of-service. Exploitation requires the user to open a malicious file. Mitigation provided by Adobe APSB25-33, which recommends updating to a fixed ve...
CVE-2024-30288
CVE-2024-30288 affects Adobe FrameMaker 2020.5, 2022.3 and earlier, caused by a Heap-based Buffer Overflow in 3DS file parsing that could allow arbitrary code execution under the user’s context. Exploitation requires user interaction: the victim must open a malicious file. The CVSS metrics indica...
CVE-2025-30295
Adobe FrameMaker is affected by CVE-2025-30295: a heap-based buffer overflow in FrameMaker 2020.8, 2022.6 and earlier could allow arbitrary code execution in the user’s context. Exploitation requires user interaction (opening a malicious file). The issue is addressed by Adobe’s APSB25-33 security...
CVE-2025-30303
Summary: CVE-2025-30303 affects Adobe FrameMaker up to 2020.8 and 2022.6 and earlier, due to an out-of-bounds read that can disclose memory. Impact is memory disclosure; mitigations like ASLR may be bypassed. Exploitation requires user interaction (victim opens a malicious file). Connected source...
CVE-2023-21622
Adobe FrameMaker is affected by CVE-2023-21622 (out-of-bounds write) that could allow arbitrary code execution in the context of the current user. Affected: FrameMaker 2020 Update 4 and earlier, and FrameMaker 2022 and earlier. Root cause: out-of-bounds write in the font parsing component. Attack...
CVE-2025-30302
CVE-2025-30302 affects Adobe FrameMaker: vulnerable in FrameMaker versions 2020.8, 2022.6 and earlier due to an out-of-bounds read that can disclose memory and bypass ASLR. Exploitation requires user interaction (victim opens a malicious file). Several connected sources confirm affected versions ...
CVE-2024-47422
Adobe FrameMaker (versions 2020.6, 2022.4 and earlier) is affected by CVE-2024-47422, an Untrusted Search Path vulnerability that could allow arbitrary code execution when a malicious path is found in search directories. The issue is a local vulnerability with user interaction required, and the r...
CVE-2024-47425
CVE-2024-47425 refers to a vulnerability in Adobe FrameMaker (versions affected: 2020.6, 2022.4 and earlier) where an integer underflow/wraparound could enable arbitrary code execution in the context of the current user. Exploitation requires the user to open a malicious file. No exploit details ...
CVE-2025-30304
The CVE-2025-30304 issue affects Adobe FrameMaker versions 2020.8, 2022.6 and earlier, with an out-of-bounds write that could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction (opening a malicious file). The root cause is a memory/write vuln...
CVE-2025-30296
CVE-2025-30296 : Adobe FrameMaker, vulnerable in versions 2020.8, 2022.6 and earlier, suffers an Integer Underflow (Wrap or Wraparound) that can enable arbitrary code execution in the context of the current user. Exploitation requires user interaction (the victim must open a malicious file). Affe...
CVE-2025-30301
Adobe FrameMaker is affected by a NULL Pointer Dereference in versions 2020.8, 2022.6 and earlier, leading to potential denial-of-service when a user opens a crafted file. The issue is triggered by user interaction (opening a malicious file). Mitigation: Adobe released APSB25-33 with fixes for Fr...
CVE-2024-47421
Adobe FrameMaker is affected by an out-of-bounds read vulnerability in the parsing of crafted files for FrameMaker 2020.6, 2022.4, and earlier. The underlying issue allows an attacker to execute code in the user’s context, with exploitation requiring user interaction (victim must open a malicious...
CVE-2024-47424
Adobe FrameMaker (versions 2020.6, 2022.4 and earlier) is affected by an Integer Overflow or Wraparound vulnerability that can lead to arbitrary code execution in the current user context. Exploitation requires the user to open a malicious file (user interaction). Connected advisories indicate a ...
CVE-2024-47423
Adobe FrameMaker (versions 2020.6, 2022.4 and earlier) is affected by CVE-2024-47423: Unrestricted Upload of File with Dangerous Type, which could lead to arbitrary code execution when a user opens or processes a malicious file. Exploitation requires user interaction. The vulnerability is documen...
CVE-2025-47131
CVE-2025-47131 affects Adobe FrameMaker 2020.8, 2022.6 and earlier, due to a heap-based buffer overflow that can lead to arbitrary code execution in the current user context. Exploitation requires user interaction (opening a malicious file). Connected sources confirm the issue and point to availa...
CVE-2025-47122
Adobe FrameMaker (versions 2020.8, 2022.6 and earlier) contains a heap-based buffer overflow that could allow arbitrary code execution in the current user context. Exploitation requires user interaction (opening a malicious file). A security update (APSB25-66) exists; remediation is to upgrade to...
CVE-2025-47120
Summary: CVE-2025-47120 affects Adobe FrameMaker 2020.8, 2022.6 and earlier. The issue is a stack-based buffer overflow in FrameMaker that can disclose memory contents. Exploitation requires user interaction (the victim must open a malicious file). What’s known from connected sources: The vulnera...
CVE-2025-47123
Adobe FrameMaker 2020.8, 2022.6 and earlier are affected by a Heap-based Buffer Overflow that can lead to arbitrary code execution in the context of the current user. Exploitation requires user interaction (opening a malicious file). Remediation: Adobe released APSB25-66 security updates addressi...
CVE-2025-47128
Adobe FrameMaker is affected by CVE-2025-47128 (Integer Underflow). Affected versions are 2020.8, 2022.6 and earlier. The issue could allow arbitrary code execution in the context of the current user, and exploitation requires the user to open a malicious file. Vendor advisories indicate remediat...
CVE-2025-47133
Adobe FrameMaker (versions 2020.8, 2022.6 and earlier) is affected by CVE-2025-47133, an out-of-bounds write vulnerability that could lead to arbitrary code execution in the context of the current user. Exploitation requires user interaction (victim must open a malicious file). Multiple connected...
CVE-2025-47119
Adobe FrameMaker (versions 2020.8, 2022.6 and earlier) contains a NULL Pointer Dereference vulnerability that can crash the application and cause a denial of service. The issue requires user interaction (victim opens a malicious file) and is described across multiple sources as a vulnerability in...
CVE-2025-47124
CVE-2025-47124 affects Adobe FrameMaker: versions 2020.8, 2022.6 and earlier are vulnerable to an out-of-bounds write that could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction (opening a specially crafted file). Connected sources corrobor...
CVE-2025-47129
Adobe FrameMaker 2020.8, 2022.6 and earlier are affected by an out-of-bounds write vulnerability (CWE-787) that could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction: a victim must open a specially crafted file. A CVSSv3.1 score of 7.8 (HI...
CVE-2025-47121
Summary: CVE-2025-47121 affects Adobe FrameMaker 2020.8, 2022.6 and earlier. It is an Access of Uninitialized Pointer vulnerability that could lead to arbitrary code execution in the context of the current user. Exploitation requires user interaction (open a malicious file). Affected software: Fr...
CVE-2025-47125
Adobe FrameMaker (versions 2020.8, 2022.6 and earlier) is affected by a heap-based buffer overflow that can enable arbitrary code execution in the context of the current user. Exploitation requires user interaction (victim must open a malicious file). Impact is high (remote code execution). The C...
CVE-2025-47130
CVE-2025-47130 affects Adobe FrameMaker versions 2020.8, 2022.6 and earlier. The vulnerability is an Integer Underflow (Wrap or Wraparound) that could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction—victims must open a malicious file. Conn...
CVE-2025-54229
CVE-2025-54229 affects Adobe FrameMaker versions 2020.8, 2022.6 and earlier. The issue is a Use-After-Free vulnerability that could lead to arbitrary code execution in the current user context . Exploitation requires user interaction (opening a malicious file). Connected sources indicate the vuln...
CVE-2025-47126
Summary: CVE-2025-47126 affects Adobe FrameMaker 2020.8, 2022.6 and earlier. The issue is an out-of-bounds write in FrameMaker that could allow arbitrary code execution in the current user context . Exploitation requires user interaction—victim must open a specially crafted file. Connected source...
CVE-2025-54230
Adobe FrameMaker is affected by a Use After Free vulnerability (CWE-416) in versions 2020.8, 2022.6 and earlier, potentially enabling arbitrary code execution in the attacker’s context. Exploitation requires user interaction: a victim must open a specially crafted file. The issue stems from use-a...
CVE-2025-47132
CVE-2025-47132 affects Adobe FrameMaker 2020.8 through 2022.6 and earlier. The vulnerability is an out-of-bounds write that could enable arbitrary code execution in the context of the current user. Exploitation requires user interaction (victim must open a specially crafted file). The issue is co...
CVE-2025-47127
CVE-2025-47127 affects Adobe FrameMaker 2020.8 through 2022.6 (and earlier) with an out-of-bounds write that can allow arbitrary code execution in the context of the current user. Exploitation requires user interaction via opening a malicious file. The issue is documented across multiple feeds (N...
CVE-2025-54231
Adobe FrameMaker (versions 2020.8, 2022.6 and earlier) is affected by a Use After Free vulnerability (CWE-416) that can allow arbitrary code execution in the attacker’s context. Exploitation requires the user to open a malicious file. Remediation per the provided documents: apply updates released...
CVE-2025-54281
Adobe FrameMaker has a Use After Free vulnerability (CWE-416) affecting versions 2020.9, 2022.7 and earlier, allowing arbitrary code execution in the current user’s context. Exploitation requires user interaction (opening a malicious file). A fix is available: update to a version later than 2022....
CVE-2025-54232
Adobe FrameMaker has a Use After Free vulnerability (CVE-2025-54232) affecting versions 2020.8, 2022.6 and earlier. Exploitation requires the user to open a malicious file, with potential arbitrary code execution in the user’s context. Connected sources confirm affected versions and the vulnerabi...
CVE-2025-54233
Adobe FrameMaker versions 2020.8, 2022.6 and earlier are affected by an out-of-bounds read (CWE-125) vulnerability that can disclose memory. Exploitation requires user interaction (open a malicious file). Remediation: update to versions later than 2022.6 and later than 2020.8 (per PT-2025-32952; ...