Digital Editions
by Adobe Inc.
CVEs (71)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2017-11273 | Med | 0.36 | 5.5 | 0.04 | Dec 9, 2017 | An issue was discovered in Adobe Digital Editions 4.5.6 and earlier versions. Adobe Digital Editions parses crafted XML files in an unsafe manner, which could lead to sensitive information disclosure. | ||
| CVE-2017-11301 | Med | 0.35 | 5.3 | 0.03 | Dec 9, 2017 | An issue was discovered in Adobe Digital Editions 4.5.6 and earlier versions. An exploitable memory corruption vulnerability exists, which could lead to disclosure of memory addresses. | ||
| CVE-2017-11300 | Med | 0.35 | 5.3 | 0.03 | Dec 9, 2017 | An issue was discovered in Adobe Digital Editions 4.5.6 and earlier versions. An exploitable memory corruption vulnerability exists, which could lead to disclosure of memory addresses. | ||
| CVE-2017-11299 | Med | 0.35 | 5.3 | 0.03 | Dec 9, 2017 | An issue was discovered in Adobe Digital Editions 4.5.6 and earlier versions. An exploitable memory corruption vulnerability exists, which could lead to disclosure of memory addresses. | ||
| CVE-2017-11298 | Med | 0.35 | 5.3 | 0.03 | Dec 9, 2017 | An issue was discovered in Adobe Digital Editions 4.5.6 and earlier versions. An exploitable memory corruption vulnerability exists, which could lead to disclosure of memory addresses. | ||
| CVE-2017-11297 | Med | 0.35 | 5.3 | 0.03 | Dec 9, 2017 | An issue was discovered in Adobe Digital Editions 4.5.6 and earlier versions. An exploitable memory corruption vulnerability exists, which could lead to disclosure of memory addresses. | ||
| CVE-2016-7888 | Med | 0.35 | 5.3 | 0.02 | Dec 15, 2016 | Adobe Digital Editions versions 4.5.2 and earlier has an important vulnerability that could lead to memory address leak. | ||
| CVE-2002-1016 | 0.03 | — | 0.02 | Oct 4, 2002 | Adobe eBook Reader allows a user to bypass restrictions for copy, print, lend, and give operations by backing up key data files, performing the operations, and restoring the original data files. | |||
| CVE-2018-12814 | 0.02 | — | 0.11 | Oct 17, 2018 | Adobe Digital Editions versions 4.5.8 and below have a heap overflow vulnerability. Successful exploitation could lead to arbitrary code execution. | |||
| CVE-2018-12823 | 0.02 | — | 0.08 | Oct 17, 2018 | Adobe Digital Editions versions 4.5.8 and below have a heap overflow vulnerability. Successful exploitation could lead to arbitrary code execution. | |||
| CVE-2018-12813 | 0.02 | — | 0.11 | Oct 17, 2018 | Adobe Digital Editions versions 4.5.8 and below have a heap overflow vulnerability. Successful exploitation could lead to arbitrary code execution. | |||
| CVE-2020-3760 | 0.01 | — | 0.07 | Feb 13, 2020 | Adobe Digital Editions versions 4.5.10 and below have a command injection vulnerability. Successful exploitation could lead to arbitrary code execution. | |||
| CVE-2019-7095 | 0.01 | — | 0.09 | May 24, 2019 | Adobe Digital Editions versions 4.5.10.185749 and below have a heap overflow vulnerability. Successful exploitation could lead to arbitrary code execution. | |||
| CVE-2023-21582 | 0.00 | — | 0.00 | Apr 12, 2023 | Adobe Digital Editions version 4.5.11.187303 (and earlier) is affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a… | |||
| CVE-2021-39828 | 0.00 | — | 0.01 | Sep 27, 2021 | Adobe Digital Editions 4.5.11.187646 (and earlier) are affected by a privilege escalation vulnerability in the Digital Editions installer. An authenticated attacker could leverage this vulnerability to escalate privileges. User interaction is required before product installation… | |||
| CVE-2021-39827 | 0.00 | — | 0.01 | Sep 27, 2021 | Adobe Digital Editions 4.5.11.187646 (and earlier) are affected by an arbitrary file write vulnerability in the Digital Editions installer. An authenticated attacker could leverage this vulnerability to write an arbitrary file to the system. User interaction is required before… | |||
| CVE-2021-39826 | 0.00 | — | 0.02 | Sep 27, 2021 | Adobe Digital Editions 4.5.11.187646 (and earlier) are affected by an arbitrary command execution vulnerability. An authenticated attacker could leverage this vulnerability to execute arbitrary commands. User interaction is required to abuse this vulnerability in that a user… | |||
| CVE-2021-21100 | 0.00 | — | 0.02 | Apr 15, 2021 | Adobe Digital Editions version 4.5.11.187245 (and earlier) is affected by a Privilege Escalation vulnerability during installation. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary file system write in the context of the current user.… | |||
| CVE-2020-3798 | 0.00 | — | 0.05 | Jun 26, 2020 | Adobe Digital Editions versions 4.5.11.187212 and below have a file enumeration (host or local network) vulnerability. Successful exploitation could lead to information disclosure. | |||
| CVE-2020-3759 | 0.00 | — | 0.04 | Feb 13, 2020 | Adobe Digital Editions versions 4.5.10 and below have a buffer errors vulnerability. Successful exploitation could lead to information disclosure. |
- risk 0.36cvss 5.5epss 0.04
An issue was discovered in Adobe Digital Editions 4.5.6 and earlier versions. Adobe Digital Editions parses crafted XML files in an unsafe manner, which could lead to sensitive information disclosure.
- risk 0.35cvss 5.3epss 0.03
An issue was discovered in Adobe Digital Editions 4.5.6 and earlier versions. An exploitable memory corruption vulnerability exists, which could lead to disclosure of memory addresses.
- risk 0.35cvss 5.3epss 0.03
An issue was discovered in Adobe Digital Editions 4.5.6 and earlier versions. An exploitable memory corruption vulnerability exists, which could lead to disclosure of memory addresses.
- risk 0.35cvss 5.3epss 0.03
An issue was discovered in Adobe Digital Editions 4.5.6 and earlier versions. An exploitable memory corruption vulnerability exists, which could lead to disclosure of memory addresses.
- risk 0.35cvss 5.3epss 0.03
An issue was discovered in Adobe Digital Editions 4.5.6 and earlier versions. An exploitable memory corruption vulnerability exists, which could lead to disclosure of memory addresses.
- risk 0.35cvss 5.3epss 0.03
An issue was discovered in Adobe Digital Editions 4.5.6 and earlier versions. An exploitable memory corruption vulnerability exists, which could lead to disclosure of memory addresses.
- risk 0.35cvss 5.3epss 0.02
Adobe Digital Editions versions 4.5.2 and earlier has an important vulnerability that could lead to memory address leak.
- CVE-2002-1016Oct 4, 2002risk 0.03cvss —epss 0.02
Adobe eBook Reader allows a user to bypass restrictions for copy, print, lend, and give operations by backing up key data files, performing the operations, and restoring the original data files.
- CVE-2018-12814Oct 17, 2018risk 0.02cvss —epss 0.11
Adobe Digital Editions versions 4.5.8 and below have a heap overflow vulnerability. Successful exploitation could lead to arbitrary code execution.
- CVE-2018-12823Oct 17, 2018risk 0.02cvss —epss 0.08
Adobe Digital Editions versions 4.5.8 and below have a heap overflow vulnerability. Successful exploitation could lead to arbitrary code execution.
- CVE-2018-12813Oct 17, 2018risk 0.02cvss —epss 0.11
Adobe Digital Editions versions 4.5.8 and below have a heap overflow vulnerability. Successful exploitation could lead to arbitrary code execution.
- CVE-2020-3760Feb 13, 2020risk 0.01cvss —epss 0.07
Adobe Digital Editions versions 4.5.10 and below have a command injection vulnerability. Successful exploitation could lead to arbitrary code execution.
- CVE-2019-7095May 24, 2019risk 0.01cvss —epss 0.09
Adobe Digital Editions versions 4.5.10.185749 and below have a heap overflow vulnerability. Successful exploitation could lead to arbitrary code execution.
- CVE-2023-21582Apr 12, 2023risk 0.00cvss —epss 0.00
Adobe Digital Editions version 4.5.11.187303 (and earlier) is affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a…
- CVE-2021-39828Sep 27, 2021risk 0.00cvss —epss 0.01
Adobe Digital Editions 4.5.11.187646 (and earlier) are affected by a privilege escalation vulnerability in the Digital Editions installer. An authenticated attacker could leverage this vulnerability to escalate privileges. User interaction is required before product installation…
- CVE-2021-39827Sep 27, 2021risk 0.00cvss —epss 0.01
Adobe Digital Editions 4.5.11.187646 (and earlier) are affected by an arbitrary file write vulnerability in the Digital Editions installer. An authenticated attacker could leverage this vulnerability to write an arbitrary file to the system. User interaction is required before…
- CVE-2021-39826Sep 27, 2021risk 0.00cvss —epss 0.02
Adobe Digital Editions 4.5.11.187646 (and earlier) are affected by an arbitrary command execution vulnerability. An authenticated attacker could leverage this vulnerability to execute arbitrary commands. User interaction is required to abuse this vulnerability in that a user…
- CVE-2021-21100Apr 15, 2021risk 0.00cvss —epss 0.02
Adobe Digital Editions version 4.5.11.187245 (and earlier) is affected by a Privilege Escalation vulnerability during installation. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary file system write in the context of the current user.…
- CVE-2020-3798Jun 26, 2020risk 0.00cvss —epss 0.05
Adobe Digital Editions versions 4.5.11.187212 and below have a file enumeration (host or local network) vulnerability. Successful exploitation could lead to information disclosure.
- CVE-2020-3759Feb 13, 2020risk 0.00cvss —epss 0.04
Adobe Digital Editions versions 4.5.10 and below have a buffer errors vulnerability. Successful exploitation could lead to information disclosure.
Page 3 of 4