Vulnerability Details CVE-2020-9726
Adobe FrameMaker version 2019.0.6 (and earlier versions) has an out-of-bounds read vulnerability that could be exploited to read past the end of an allocated buffer, possibly resulting in a crash or disclosure of sensitive information from other memory locations. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious FrameMaker file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.016
EPSS Ranking 80.8%
CVSS Severity
CVSS v3 Score 6.1
CVSS v2 Score 5.8
References
Products affected by CVE-2020-9726
-
cpe:2.3:a:adobe:framemaker:-
-
cpe:2.3:a:adobe:framemaker:1.0
-
cpe:2.3:a:adobe:framemaker:10.0
-
cpe:2.3:a:adobe:framemaker:11.0
-
cpe:2.3:a:adobe:framemaker:12.0
-
cpe:2.3:a:adobe:framemaker:13.0.0
-
cpe:2.3:a:adobe:framemaker:13.0.1
-
cpe:2.3:a:adobe:framemaker:13.0.2
-
cpe:2.3:a:adobe:framemaker:13.0.3
-
cpe:2.3:a:adobe:framemaker:13.0.4
-
cpe:2.3:a:adobe:framemaker:13.0.5
-
cpe:2.3:a:adobe:framemaker:14.0.1
-
cpe:2.3:a:adobe:framemaker:14.0.2
-
cpe:2.3:a:adobe:framemaker:14.0.3
-
cpe:2.3:a:adobe:framemaker:2.0
-
cpe:2.3:a:adobe:framemaker:2.1
-
cpe:2.3:a:adobe:framemaker:2019
-
cpe:2.3:a:adobe:framemaker:2019.0.4
-
cpe:2.3:a:adobe:framemaker:2019.0.5
-
cpe:2.3:a:adobe:framemaker:2019.0.6
-
cpe:2.3:a:adobe:framemaker:3.0
-
cpe:2.3:a:adobe:framemaker:4.0
-
cpe:2.3:a:adobe:framemaker:5.0
-
cpe:2.3:a:adobe:framemaker:5.1
-
cpe:2.3:a:adobe:framemaker:5.1.2
-
cpe:2.3:a:adobe:framemaker:5.5
-
cpe:2.3:a:adobe:framemaker:5.5.6
-
cpe:2.3:a:adobe:framemaker:6.0
-
cpe:2.3:a:adobe:framemaker:7.0
-
cpe:2.3:a:adobe:framemaker:7.1
-
cpe:2.3:a:adobe:framemaker:7.2
-
cpe:2.3:a:adobe:framemaker:8.0
-
cpe:2.3:a:adobe:framemaker:8.0.1
-
cpe:2.3:a:adobe:framemaker:8.0.2
-
cpe:2.3:a:adobe:framemaker:8.0.3
-
cpe:2.3:a:adobe:framemaker:9.0
-
cpe:2.3:a:adobe:framemaker:9.0.1
-
cpe:2.3:a:adobe:framemaker:9.0.2
-
cpe:2.3:a:adobe:framemaker:9.0.3
-
cpe:2.3:o:microsoft:windows:-