Adobe Framemaker: Malicious File Can Run Code as User

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

7.8

Adobe Framemaker: Malicious File Can Run Code as User

CVE-2026-27297

Summary

Adobe Framemaker versions 2022.8 and earlier have a security flaw that could allow an attacker to run malicious code on your computer if you open a specially crafted file. This requires you to actively open the file, so you need to be cautious with the files you open. Update to the latest version to fix the issue.

Original title

Original description

Adobe Framemaker versions 2022.8 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

nvd CVSS3.1 7.8

Vulnerability type

CWE-191

https://helpx.adobe.com/security/products/framemaker/apsb26-36.html

Published: 14 Apr 2026 · Updated: 15 Apr 2026 · First seen: 15 Apr 2026