CVE-2018-12819

CWE-125Out-of-bounds Read4 documents4 sources
Severity
7.5HIGH
EPSS
3.6%
top 12.16%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Adobe Digital EditionsAdobe Adobe Digital Editions
Timeline
PublishedOct 17
Latest updateMay 14

Description

Adobe Digital Editions versions 4.5.8 and below have an out of bounds read vulnerability. Successful exploitation could lead to information disclosure.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages2 packages

CVEListV5adobe/adobe_digital_editions4.5.8 and below versions

Patches

Patch: helpx.adobe.comPatch: helpx.adobe.com

🔴Vulnerability Details

2
GHSA
GHSA-m294-58vm-9wx4: Adobe Digital Editions versions 42022-05-14
CVEList
CVE-2018-12819: Adobe Digital Editions versions 42018-10-17

💥Exploits & PoCs

1
Exploit-DB
Tourism Website Blog - Remote Code Execution / SQL Injection2018-12-11
CVE-2018-12819 (HIGH CVSS 7.5) | Adobe Digital Editions versions 4.5 | cvebase.io