CVE-2018-4925

CWE-125 — Out-of-bounds Read CWE-200 — Information Exposure3 documents3 sources

Severity

7.5HIGH

EPSS

3.5%

top 12.48%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Adobe Digital Editions

Timeline

PublishedMay 19

Latest updateMay 14

Description

Adobe Digital Editions versions 4.5.7 and below have an exploitable Out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages2 packages

▶CVEListV5adobe_digital_editions_4.5.7_and_belowAdobe Digital Editions 4.5.7 and below

▶NVDadobe/digital_editions4.5.7

🔴Vulnerability Details

GHSA

GHSA-f4pm-cphr-98hp: Adobe Digital Editions versions 4↗2022-05-14

▶

CVEList

CVE-2018-4925: Adobe Digital Editions versions 4↗2018-05-19

▶