CVE-2017-3091

HIGH

Adobe Digital Editions <= 4.5.4 - Memory Corruption

Title source: llm
STIX 2.1

Description

Adobe Digital Editions 4.5.4 and earlier versions 4.5.4 and earlier have an exploitable memory corruption vulnerability. Successful exploitation could lead to arbitrary code execution.

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1039100
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/100244

Scores

CVSS v3 7.5
EPSS 0.0808
EPSS Percentile 94.1%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Details

CWE
CWE-119
Status published
Products (2)
adobe/digital_editions < 4.5.5
Adobe Systems Incorporated/Digital Editions 4.5.4 and earlier.
Published Aug 11, 2017
Tracked Since Feb 18, 2026