CVE-2023-21584
Adobe FrameMaker Font Parsing Use-After-Free Information Disclosure Vulnerability
FrameMaker 2020 Update 4 (and earlier), 2022 (and earlier) are affected by a Use After Free vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Affected products
Adobe · FrameMakerWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →