Adobe Framemaker vulnerabilities

CVE-2026-27296 [HIGH] CWE-191 CVE-2026-27296: Adobe Framemaker versions 2022.8 and earlier are affected by an Integer Underflow (Wrap or Wraparoun Adobe Framemaker versions 2022.8 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2026-27298 [HIGH] CWE-843 CVE-2026-27298: Adobe Framemaker versions 2022.8 and earlier are affected by an Access of Resource Using Incompatibl Adobe Framemaker versions 2022.8 and earlier are affected by an Access of Resource Using Incompatible Type ('Type Confusion') vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2026-27293 [HIGH] CWE-122 CVE-2026-27293: Adobe Framemaker versions 2022.8 and earlier are affected by a Heap-based Buffer Overflow vulnerabil Adobe Framemaker versions 2022.8 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2026-27294 [HIGH] CWE-125 CVE-2026-27294: Adobe Framemaker versions 2022.8 and earlier are affected by an out-of-bounds read vulnerability whe Adobe Framemaker versions 2022.8 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of the current user. Exploitation of this issue requires user interaction

CVE-2026-27292 [HIGH] CWE-416 CVE-2026-27292: Adobe Framemaker versions 2022.8 and earlier are affected by a Use After Free vulnerability that cou Adobe Framemaker versions 2022.8 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2026-27295 [HIGH] CWE-787 CVE-2026-27295: Adobe Framemaker versions 2022.8 and earlier are affected by an out-of-bounds write vulnerability th Adobe Framemaker versions 2022.8 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2026-27297 [HIGH] CWE-191 CVE-2026-27297: Adobe Framemaker versions 2022.8 and earlier are affected by an Integer Underflow (Wrap or Wraparoun Adobe Framemaker versions 2022.8 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2026-27290 [HIGH] CWE-426 CVE-2026-27290: Adobe Framemaker versions 2022.8 and earlier are affected by an Untrusted Search Path vulnerability Adobe Framemaker versions 2022.8 and earlier are affected by an Untrusted Search Path vulnerability that might allow attackers to execute arbitrary code in the context of the current user. If the application uses a search path to locate critical resources such as programs, then an attacker could modify that search path to point to a malicious program,

CVE-2026-27301 [MEDIUM] CWE-122 CVE-2026-27301: Adobe Framemaker versions 2022.8 and earlier are affected by a Heap-based Buffer Overflow vulnerabil Adobe Framemaker versions 2022.8 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could lead to memory exposure. An attacker could leverage this vulnerability to disclose sensitive information stored in memory. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2026-27299 [MEDIUM] CWE-20 CVE-2026-27299: Adobe Framemaker versions 2022.8 and earlier are affected by an Improper Input Validation vulnerabil Adobe Framemaker versions 2022.8 and earlier are affected by an Improper Input Validation vulnerability that could lead to arbitrary file system read. An attacker could leverage this vulnerability to access sensitive files or data on the system. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2026-27300 [MEDIUM] CWE-824 CVE-2026-27300: Adobe Framemaker versions 2022.8 and earlier are affected by an Access of Uninitialized Pointer vuln Adobe Framemaker versions 2022.8 and earlier are affected by an Access of Uninitialized Pointer vulnerability that could lead to memory exposure. An attacker could leverage this vulnerability to disclose sensitive information. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2025-54281 [HIGH] CWE-416 CVE-2025-54281: Adobe Framemaker versions 2020.9, 2022.7 and earlier are affected by a Use After Free vulnerability Adobe Framemaker versions 2020.9, 2022.7 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2025-54282 [HIGH] CWE-122 CVE-2025-54282: Adobe Framemaker versions 2020.9, 2022.7 and earlier are affected by a Heap-based Buffer Overflow vu Adobe Framemaker versions 2020.9, 2022.7 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2025-54231 [HIGH] CWE-416 CVE-2025-54231: Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a Use After Free vulnerability Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2025-54230 [HIGH] CWE-416 CVE-2025-54230: Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a Use After Free vulnerability Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2025-54232 [HIGH] CWE-416 CVE-2025-54232: Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a Use After Free vulnerability Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2025-54229 [HIGH] CWE-416 CVE-2025-54229: Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a Use After Free vulnerability Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2025-54233 [MEDIUM] CWE-125 CVE-2025-54233: Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by an out-of-bounds read vulnerabi Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2025-47129 [HIGH] CWE-787 CVE-2025-47129: Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by an out-of-bounds write vulnerab Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2025-47124 [HIGH] CWE-787 CVE-2025-47124: Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by an out-of-bounds write vulnerab Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.