CVE-2017-11297

MEDIUM

Adobe Digital Editions <= 4.5.6 - Memory Corruption

Title source: llm
STIX 2.1

Description

An issue was discovered in Adobe Digital Editions 4.5.6 and earlier versions. An exploitable memory corruption vulnerability exists, which could lead to disclosure of memory addresses.

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/101839
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1039798

Scores

CVSS v3 5.3
EPSS 0.0322
EPSS Percentile 86.7%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Details

CWE
CWE-119
Status published
Products (2)
adobe/digital_editions < 4.5.6
n/a/Adobe Digital Editions 4.5.6 and earlier versions Adobe Digital Editions 4.5.6 and earlier versions
Published Dec 09, 2017
Tracked Since Feb 18, 2026