First published: Tue May 10 2022(Updated: )
Adobe Framemaker versions 2029u8 (and earlier) and 2020u4 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Credit: psirt@adobe.com
Affected Software | Affected Version | How to fix |
---|---|---|
Adobe Framemaker | >=2019<=2019.0.8 | |
Adobe Framemaker | >=2020<=2020.0.4 | |
Microsoft Windows |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this issue in Adobe Framemaker is CVE-2022-28822.
The severity of CVE-2022-28822 is critical with a CVSS score of 7.8.
Adobe Framemaker versions 2019u8 and earlier, as well as 2020u4 and earlier, are affected by CVE-2022-28822.
CVE-2022-28822 is an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user.
Exploitation of CVE-2022-28822 requires user interaction in that a victim must open a malicious file.