CVE-2017-11297

Опубликовано: 09 дек. 2017

Источник: nvd

CVSS3: 5.3

CVSS2: 5

EPSS Низкий

Описание

An issue was discovered in Adobe Digital Editions 4.5.6 and earlier versions. An exploitable memory corruption vulnerability exists, which could lead to disclosure of memory addresses.

Ссылки

http://www.securityfocus.com/bid/101839
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1039798
Third Party Advisory
VDB Entry
https://helpx.adobe.com/security/products/Digital-Editions/apsb17-39.html
Vendor Advisory
http://www.securityfocus.com/bid/101839
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1039798
Third Party Advisory
VDB Entry
https://helpx.adobe.com/security/products/Digital-Editions/apsb17-39.html
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:adobe:digital_editions:*:*:*:*:*:*:*:*

Версия до 4.5.6 (включая)

EPSS

Процентиль: 75%

0.00878

Низкий

5.3 Medium

CVSS3

5 Medium

CVSS2

Дефекты

CWE-119

Связанные уязвимости

GHSA-3q28-7xrx-5524