Out of Bounds Read Vulnerability in Adobe Digital Editions
CVE-2018-12817

7.5HIGH

Key Information:

Vendor: Adobe
Status: Digital Editions
Vendor: CVE Published:; 18 January 2019

What is CVE-2018-12817?

Adobe Digital Editions versions 4.5.9 and earlier are susceptible to an out of bounds read vulnerability that could potentially allow attackers to disclose sensitive information. This flaw arises from improper handling of memory operations, where an attacker could leverage the weakness to extract data from the memory. It is crucial for users of Adobe Digital Editions to apply the necessary security updates to mitigate the risk associated with this vulnerability.

References

https://helpx.adobe.com/security/products/Digital-Edition...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/106472

vdb-entryx_refsource_BID

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 18, 2019
Vulnerability Reserved
Jun 25, 2018