Memory Corruption Vulnerability in Adobe Digital Editions
CVE-2017-11298

5.3MEDIUM

Key Information:

Vendor: Adobe
Status: Adobe Digital Editions 4.5.6 And Earlier Versions
Vendor: CVE Published:; 9 December 2017

🔔 Create Adobe Vulnerability Alert

What is CVE-2017-11298?

A vulnerability was identified in Adobe Digital Editions, which may allow an attacker to exploit memory corruption to potentially reveal sensitive memory addresses. Users of Adobe Digital Editions version 4.5.6 and earlier should be aware of this security concern, as it poses risks associated with unauthorized access to memory data.

Affected Version(s)

Adobe Digital Editions 4.5.6 and earlier Adobe Digital Editions 4.5.6 and earlier versions

References

http://www.securityfocus.com/bid/101839

vdb-entryx_refsource_BID

https://helpx.adobe.com/security/products/Digital-Edition...

x_refsource_CONFIRM

http://www.securitytracker.com/id/1039798

vdb-entryx_refsource_SECTRACK

CVSS V3.1

Score:

5.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 9, 2017
Vulnerability Reserved
Jul 13, 2017

.