CVE-2018-12817

CWE-125 — Out-of-bounds Read3 documents3 sources

Severity

7.5HIGH

EPSS

2.4%

top 14.94%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Adobe Digital Editions

Timeline

PublishedJan 18

Latest updateMay 14

Description

Adobe Digital Editions versions 4.5.9 and below have an out of bounds read vulnerability. Successful exploitation could lead to information disclosure.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages1 packages

▶NVDadobe/digital_editions4.5.9

Patches

Patch: helpx.adobe.com ↗Patch: helpx.adobe.com ↗

🔴Vulnerability Details

GHSA

GHSA-8w84-9q7w-fh5p: Adobe Digital Editions versions 4↗2022-05-14

▶

CVEList

CVE-2018-12817: Adobe Digital Editions versions 4↗2019-01-18

▶