First published: Tue May 10 2022(Updated: )
Adobe Framemaker versions 2029u8 (and earlier) and 2020u4 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Credit: psirt@adobe.com
Affected Software | Affected Version | How to fix |
---|---|---|
Adobe Framemaker | >=2019<=2019.0.8 | |
Adobe Framemaker | >=2020<=2020.0.4 | |
Microsoft Windows |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2022-28825 is an out-of-bounds write vulnerability in Adobe Framemaker that could result in arbitrary code execution.
Adobe Framemaker versions 2019u8 (and earlier) and 2020u4 (and earlier) are affected by CVE-2022-28825.
CVE-2022-28825 has a severity score of 7.8, which is considered critical.
Exploitation of CVE-2022-28825 requires user interaction, where a victim must open a malicious file.
No, Microsoft Windows is not affected by CVE-2022-28825.
Update to the latest version of Adobe Framemaker to fix CVE-2022-28825.