Vulnerability Details CVE-2022-28823
Adobe Framemaker versions 2029u8 (and earlier) and 2020u4 (and earlier) are affected by a Use-after-free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.116
EPSS Ranking 93.3%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 9.3
References
Products affected by CVE-2022-28823
-
cpe:2.3:a:adobe:framemaker:2019
-
cpe:2.3:a:adobe:framemaker:2019.0.4
-
cpe:2.3:a:adobe:framemaker:2019.0.5
-
cpe:2.3:a:adobe:framemaker:2019.0.6
-
cpe:2.3:a:adobe:framemaker:2019.0.7
-
cpe:2.3:a:adobe:framemaker:2019.0.8
-
cpe:2.3:a:adobe:framemaker:2020
-
cpe:2.3:a:adobe:framemaker:2020.0.1
-
cpe:2.3:a:adobe:framemaker:2020.0.2
-
cpe:2.3:a:adobe:framemaker:2020.0.4
-
cpe:2.3:o:microsoft:windows:-