CVE-2021-39829

Name of the Vulnerable Software and Affected Versions Adobe Framemaker versions 2019 Update 8 and earlier Adobe Framemaker versions 2020 Release Update 2 and earlier

Description The issue is related to an out-of-bounds write vulnerability in memory. It can be exploited by a remote attacker to execute arbitrary code in the context of the current user by using a specially crafted PDF file. Exploitation requires user interaction, where the victim must open a malicious PDF file.

Recommendations For Adobe Framemaker versions 2019 Update 8 and earlier, update to a version later than Update 8 to resolve the issue. For Adobe Framemaker versions 2020 Release Update 2 and earlier, update to a version later than Release Update 2 to resolve the issue. As a temporary workaround, consider avoiding the use of PDF files from untrusted sources until a patch is available.