Bulletin ID
Security Updates Available for Adobe Framemaker | APSB20-54
|
Date Published |
Priority |
---|---|---|
APSB20-54 |
September 8, 2020 |
3 |
Summary
Adobe has released a security update for Adobe Framemaker. This update addresses multiple critical vulnerabilities. Successful exploitation could lead to arbitrary code execution in the context of the current user.
Affected Versions
Product |
Version |
Platform |
---|---|---|
Adobe Framemaker |
2019.0.6 and below |
Windows |
Solution
Adobe categorizes these updates with the following priority ratings and recommends users update their installation to the newest version:
Product |
Version |
Platform |
Priority |
Availability |
---|---|---|---|---|
Adobe Framemaker |
2019.0.7 |
Windows |
3 |
Vulnerability details
Vulnerability Category |
Vulnerability Impact |
Severity |
CVE Numbers |
---|---|---|---|
Out-of-Bounds Read |
Arbitrary code execution |
Critical |
CVE-2020-9726 |
Stack-based Buffer Overflow |
Arbitrary code execution |
Critical |
CVE-2020-9725 |
Acknowledgments
Adobe would like to thank Anonymous working with Trend Micro Zero Day Initiative for reporting the relevant issues and for working with Adobe to help protect our customers: