Published: 15/02/2017 Updated: 03/10/2019
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9
VMScore: 445
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Vulnerability Summary

Adobe Digital Editions versions 4.5.3 and previous versions have an exploitable buffer over-read vulnerability. Successful exploitation could lead to information disclosure.

Vulnerability Trend

Affected Products

Vendor Product Versions
AdobeDigital Editions4.5.3

Recent Articles

Adobe fixes 24 Security Vulnerabilities in Adobe Flash, Digital Editions, & Campaign
BleepingComputer • Lawrence Abrams • 01 Jan 1970

Adobe has released updates for Adobe Flash Player, Digital Editions,and Campaign that resolve a total of 24 security vulnerabilities, with half of them being in Adobe Flash Player. As many of these vulnerabilities are rated as Critical, it is strongly advised that anyone using these products immediately update them to the latest version.
A vulnerability is rated as Critical when it could allow attackers to remotely execute command on an affected machine. This would allow them to execute...