Primary

Context

Adobe FrameMaker Improper Input Validation Vulnerability Allowing Arbitrary File System Read

Vulnerability

Patched

A vulnerability exists in Adobe FrameMaker versions 2022.8 and earlier, related to improper input validation. This issue could lead to arbitrary file system read, allowing an attacker to access sensitive files or data on the system. Exploitation requires user interaction, as a victim must open a malicious file.

Impact

Exploitation of this vulnerability could result in unauthorized access to sensitive files or data on the system.

Remediation

Users are advised to update to Adobe FrameMaker 2026 or Adobe FrameMaker 2022 Update 9. Instructions for downloading these versions are available in the Adobe security bulletin APSB26-36.

Added: Apr 14, 2026, 11:57 PM

Updated: Apr 14, 2026, 11:57 PM

Vulnerability Rating

Custom Algorithm

spread

2.4

impact

2.5

exploitability

4.2

remediation

7.7

relevance

5.9

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.4

impact

2.5

exploitability

4.2

remediation

7.7

relevance

5.9

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Adobe FrameMaker Improper Input Validation Vulnerability Allowing Arbitrary File System Read

Vulnerability

Impact

Remediation

Affected Products

Adobe FrameMaker

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating