Buffer Over-Read Vulnerability in Adobe Digital Editions Software
CVE-2017-2976
7.5HIGH
Key Information:
- Vendor
- Adobe
- Vendor
- CVE Published:
- 15 February 2017
Summary
Adobe Digital Editions versions 4.5.3 and earlier are susceptible to a buffer over-read vulnerability. This flaw could be exploited by attackers to gain unauthorized access to potentially sensitive information stored within the application, leading to data leaks and privacy concerns. Users are advised to upgrade to the latest version to mitigate the risk associated with this vulnerability.
Affected Version(s)
Adobe Digital Editions 4.5.3 and earlier. Adobe Digital Editions 4.5.3 and earlier.
References
CVSS V3.1
Score:
7.5
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved