Bulletin ID
Last updated on
May 16, 2021
|
Also applies to Digital Editions
Security Updates Available for Adobe Framemaker | APSB21-14
|
|
Date Published |
Priority |
|---|---|---|
|
APSB21-14 |
March 09, 2021 |
3 |
Summary
Adobe has released a security hotfix for Adobe Framemaker. This hotfix addresses a critical vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the current user.
Affected Versions
|
Product |
Version |
Platform |
|---|---|---|
|
Adobe Framemaker |
2019 Release Update 8 and below |
Windows |
|
Adobe Framemaker |
2020 Release Update 1 and below |
Windows |
Solution
Adobe categorizes these updates with the following priority ratings and recommends users update their installation to the newest version and apply the fix given in the Tech note.
|
Product |
Version |
Platform |
Priority |
Availability |
|---|---|---|---|---|
|
Adobe Framemaker |
2019 Release Update 8 |
Windows |
3 |
|
|
Adobe Framemaker |
2020 Release Update 1 |
Windows |
3 |
Vulnerability details
|
Vulnerability Category |
Vulnerability Impact |
Severity |
CVE Numbers |
|---|---|---|---|
|
Out-of-Bounds Read |
Arbitrary code execution |
Critical |
CVE-2021-21056 |
Acknowledgments
Adobe would like to thank Francis Provencher {PRL} working with Trend Micro Zero Day Initiative for reporting the relevant issues and for working with Adobe to help protect our customers:
Revisions
April 12, 2021: Added version '2020 Release Update 1 and below' in the affected version table; Added version 2019 Release Update 8 in the solution table
Adobe MAX
The Creativity Conference
Oct 14–16 Miami Beach and online
Adobe MAX
The Creativity Conference
Oct 14–16 Miami Beach and online