CVE-2023-21621

Name of the Vulnerable Software and Affected Versions Adobe FrameMaker versions 2020 Update 4 and earlier, 2022 and earlier

Description The issue is related to improper input validation, which could result in arbitrary code execution in the context of the current user. Exploitation requires user interaction, where a victim must open a malicious file. This allows an attacker to execute code with the privileges of the current user.

Recommendations For Adobe FrameMaker versions 2020 Update 4 and earlier, 2022 and earlier, update to a version that includes the fix for this issue to prevent arbitrary code execution. As a temporary workaround, consider avoiding the use of potentially malicious files with Adobe FrameMaker until a patch is available. Restrict access to untrusted files to minimize the risk of exploitation.