CVE-2020-3728: 
Adobe Framemaker vulnerability analysis and mitigation

Adobe Framemaker versions 2019.0.4 and below were found to contain an out-of-bounds write vulnerability, identified as CVE-2020-3728. The vulnerability was discovered and reported to Adobe Systems Incorporated, with the CVE being created on December 17, 2019, and publicly disclosed on February 13, 2020 (NVD, CVE).

The vulnerability is classified as an out-of-bounds write (CWE-787) issue. According to the National Vulnerability Database, it received a CVSS v3.1 base score of 8.8 (HIGH) with the vector string CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H. Under CVSS v2.0, it was assigned a base score of 6.8 (MEDIUM) with the vector (AV:N/AC:M/Au:N/C:P/I:P/A:P) (NVD).

Successful exploitation of this vulnerability could lead to arbitrary code execution on affected systems. The vulnerability affects the confidentiality, integrity, and availability of the system, with all three aspects rated as 'High' in the CVSS v3.1 scoring (NVD).

Adobe has released security patches to address this vulnerability. Users are advised to upgrade their Adobe Framemaker installations to versions newer than 2019.0.4 (Adobe Advisory).