Security Updates Available for Adobe Framemaker | APSB21-14
Bulletin ID Date Published Priority
APSB21-14 March  09, 2021    
3

Summary

Adobe has released a security hotfix for Adobe Framemaker. This hotfix addresses a critical vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the current user.

Affected Versions

Product Version Platform
Adobe Framemaker
2019 Release Update 8 and below
Windows
Adobe Framemaker
2020 Release Update 1  and below Windows

Solution

Adobe categorizes these updates with the following priority ratings and recommends users update their installation to the newest version and apply the fix given in the Tech note.

Product Version Platform Priority Availability
Adobe Framemaker
2019 Release Update 8
(hotfix)
Windows
3

Download Page

Tech note

Adobe Framemaker 2020 Release Update 1
 (hotfix)
Windows
3

Download Page

Tech note

Vulnerability details

Vulnerability Category Vulnerability Impact Severity CVE Numbers
Out-of-Bounds Read 
Arbitrary code execution
Critical CVE-2021-21056

Acknowledgments

Adobe would like to thank Francis Provencher {PRL} working with Trend Micro Zero Day Initiative for reporting the relevant issues and for working with Adobe to help protect our customers: 

Revisions

April 12, 2021: Added version '2020 Release Update 1 and below' in the affected version table; Added version 2019 Release Update 8 in the solution table