CVE-2020-3720: 
Adobe Framemaker vulnerability analysis and mitigation

Adobe Framemaker versions 2019.0.4 and below contain an out-of-bounds write vulnerability identified as CVE-2020-3720. The vulnerability was disclosed on February 13, 2020. This security flaw affects Adobe Framemaker software and its successful exploitation could lead to arbitrary code execution (AttackerKB, Adobe Security).

The vulnerability is classified as an out-of-bounds write issue with a CVSS v3.1 base score of 8.8 (High). The attack vector is network-based (AV:N) with low attack complexity (AC:L), requires no privileges (PR:N), but does need user interaction (UI:R). The scope is unchanged (S:U), and the impact on confidentiality, integrity, and availability is all rated as high (C:H/I:H/A:H) (AttackerKB).

Successful exploitation of this vulnerability could lead to arbitrary code execution, potentially allowing an attacker to execute malicious code with the privileges of the targeted user. The vulnerability has high impact ratings for confidentiality, integrity, and availability, indicating comprehensive system compromise is possible (AttackerKB).

Users should upgrade Adobe Framemaker to a version newer than 2019.0.4 to address this vulnerability (Adobe Security).