Stack Overflow Vulnerability in Adobe Digital Editions by Adobe
CVE-2018-4926

5.5MEDIUM

Key Information:

Vendor: Adobe
Status: Adobe Digital Editions 4.5.7 And Below
Vendor: CVE Published:; 19 May 2018

Summary

Adobe Digital Editions versions 4.5.7 and earlier are impacted by a stack overflow vulnerability that can be exploited to disclose sensitive information. An attacker may leverage this flaw to manipulate memory and extract data, potentially compromising user privacy and data integrity.

Affected Version(s)

Adobe Digital Editions 4.5.7 and below Adobe Digital Editions 4.5.7 and below

References

https://helpx.adobe.com/security/products/Digital-Edition...

x_refsource_MISC

http://www.securityfocus.com/bid/103712

vdb-entryx_refsource_BID

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
May 19, 2018
Vulnerability Reserved
Jan 3, 2018