July 17, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Multiple SAP Products Vulnerabilities
July 9, 2025
Windows BitLocker Flaw Lets Attackers Bypass Security
July 9, 2025
Multiple SAP Products Vulnerabilities
July 9, 2025
Windows BitLocker Flaw Lets Attackers Bypass Security
July 9, 2025
Severity
Medium
Analysis Summary
CVE-2025-47126 CVSS:7.8
Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
CVE-2025-47128 CVSS:7.8
Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
CVE-2025-47131 CVSS:7.8
Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
CVE-2025-47122 CVSS:7.8
Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
CVE-2025-47130 CVSS:7.8
Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
CVE-2025-47121 CVSS:7.8
Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by an Access of Uninitialized Pointer vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
CVE-2025-47133 CVSS:7.8
Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
CVE-2025-47124 CVSS:7.8
Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Impact
- Code Execution
- Buffer Overflow
Indicators of Compromise
CVE
CVE-2025-47126
CVE-2025-47128
CVE-2025-47131
CVE-2025-47122
CVE-2025-47130
CVE-2025-47121
CVE-2025-47133
CVE-2025-47124
Affected Vendors
- Adobe
Affected Products
- Adobe Framemaker 2022.6
- Adobe Framemaker 2020.8
Remediation
Refer to the Adobe Security Advisory for patch, upgrade, or suggested workaround information.