CVE-2026-27290 - Vulnerability Details

- Adobe Framemaker | Untrusted Search Path (CWE-426)

Description

Adobe Framemaker versions 2022.8 and earlier are affected by an Untrusted Search Path vulnerability that might allow attackers to execute arbitrary code in the context of the current user. If the application uses a search path to locate critical resources such as programs, then an attacker could modify that search path to point to a malicious program, which the targeted application would then execute. Exploitation of this issue does not require user interaction.

Published: 2026-04-14

Score: 8.6 High

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

Adobe Framemaker versions 2022.8 and earlier contain an untrusted search path flaw that allows an attacker to cause the program to execute a malicious executable located in a tainted search path. The vulnerability can be triggered without user interaction, enabling arbitrary code execution in the context of the current user. If exploited, the attacker can run any code the user can run, potentially compromising the integrity of the system and all data the user has access to.

Affected Systems

Adobe Framemaker for Windows, macOS, and Linux distributions released through version 2022.8 and older. The vulnerability is present in all editions that use a search path to locate critical runtime resources.

Risk and Exploitability

The high CVSS score of 8.6 indicates a severe risk, and exploitation does not require user interaction, which suggests that a local attacker who can alter or influence the application's search path can succeed. EPSS data is not available, but the significant severity and lack of remediation in KEV imply that exploitation remains realistic. The attack vector is inferred to be local, as the flaw depends on modifying the application’s environment or filesystem.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Adobe

Adobe Framemaker

affected

Version	Status	Constraints
`0`	affected	≤ 2022.8

Configuration 1 [-]

AND

cpe:2.3:a:adobe:framemaker:*:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

No data.

Vendor Product Confidence Versions

Adobe

Framemaker

100%

Version	Status	Scheme	Platform
`[0,2022.8]`	affected	generic	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Apply the security update for Adobe Framemaker published by Adobe; download it from the Adobe security advisory linked in the CVE references.
Re‑configure the application to use absolute paths for critical resources, or explicitly set its search path to include only trusted directories; avoid relying on environment variables that can be manipulated.
Restrict permissions for directories that the application searches—delete or disable write access for non‑trusted paths and use operating‑system controls to prevent execution of files from arbitrary locations.

Generated by OpenCVE AI on April 15, 2026 at 00:22 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required None

Scope Changed

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction Required

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00027.

Exploitation none

Automatable no

Technical Impact total

References

Link	Providers
https://helpx.adobe.com/security/products/framemaker/apsb26-36.html

History

Wed, 15 Apr 2026 18:45:00 +0000

Type	Values Removed	Values Added
First Time appeared		Microsoft Microsoft windows
CPEs		cpe:2.3:a:adobe:framemaker:::::::: cpe:2.3:o:microsoft:windows:-:::::::*
Vendors & Products		Microsoft Microsoft windows

Wed, 15 Apr 2026 15:15:00 +0000

Type	Values Removed	Values Added
First Time appeared		Adobe Adobe framemaker
Vendors & Products		Adobe Adobe framemaker

Wed, 15 Apr 2026 10:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Tue, 14 Apr 2026 23:15:00 +0000

Type	Values Removed	Values Added
Description		Adobe Framemaker versions 2022.8 and earlier are affected by an Untrusted Search Path vulnerability that might allow attackers to execute arbitrary code in the context of the current user. If the application uses a search path to locate critical resources such as programs, then an attacker could modify that search path to point to a malicious program, which the targeted application would then execute. Exploitation of this issue does not require user interaction.
Title		Adobe Framemaker \| Untrusted Search Path (CWE-426)
Weaknesses		CWE-426
References		https://helpx.adobe.com/security/products/framemaker/apsb26-36.html
Metrics		cvssV3_1 `{'score': 8.6, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H'}`

Subscriptions

Adobe Framemaker

Microsoft Windows

MITRE

Status: PUBLISHED

Assigner: adobe

Published: 2026-04-14T22:58:17.003Z

Updated: 2026-04-15T09:13:10.218Z

Reserved: 2026-02-18T22:02:41.395Z

Link: CVE-2026-27290

Vulnrichment

Updated: 2026-04-15T09:07:13.647Z

NVD

Status : Analyzed

Published: 2026-04-14T23:16:25.813

Modified: 2026-04-15T18:32:01.843

Link: CVE-2026-27290

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-04-15T14:53:43Z

Weaknesses

CWE-426

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Local

Attack Complexity Low

Privileges Required None

Scope Changed

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction Required

Exploitation none

Automatable no

Technical Impact total

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object