EUVD-2017-2906

Malware in sbrugna...

APSB23-04 : Security update available for Adobe Digital Editions

Adobe has released a security update for Adobe Digital Editions. This update resolves one critical vulnerability that could result in arbitrary code execution...

Privilege escalation

Adobe Digital Editions 4.5.11.187646 and earlier are affected by a privilege escalation vulnerability in the Digital Editions installer. An authenticated attacker could leverage this vulnerability to escalate privileges. User interaction is required before product installation to abuse this...

CVE-2021-39828

CVE-2021-39828 affects Adobe Digital Editions 4.5.11.187646 and earlier. The vulnerability is a local privilege escalation in the Digital Editions installer that an authenticated attacker can exploit to gain higher privileges. Exploitation requires user interaction before product installation. Th...

CVE-2021-39828 Adobe Digital Editions Installer flaw leads to Local Privilege Escalation

Adobe Digital Editions 4.5.11.187646 and earlier are affected by a privilege escalation vulnerability in the Digital Editions installer. An authenticated attacker could leverage this vulnerability to escalate privileges. User interaction is required before product installation to abuse this...

CVE-2021-39827

CVE-2021-39827 affects Adobe Digital Editions 4.5.11.187646 and earlier, enabling an arbitrary file write via the Digital Editions installer. Exploitation context is local, authenticated, with user interaction required before installation. The macOS Nessus/Night audits map this under APSB21-80; a...

CVE-2021-39827 Adobe Digital Editions Installer flaw leads to Arbitrary File System Write

Adobe Digital Editions 4.5.11.187646 and earlier are affected by an arbitrary file write vulnerability in the Digital Editions installer. An authenticated attacker could leverage this vulnerability to write an arbitrary file to the system. User interaction is required before product installation ...

CVE-2021-39826 Adobe Digital Editions Command Execution Vulnerability

Adobe Digital Editions 4.5.11.187646 and earlier are affected by an arbitrary command execution vulnerability. An authenticated attacker could leverage this vulnerability to execute arbitrary commands. User interaction is required to abuse this vulnerability in that a user must open a maliciously...

Adobe Digital Editions Arbitrary File System Write Vulnerability

Adobe Digital Editions software provides an engaging way to help you view and manage eBooks and other digital publications. Adobe Digital Editions 4.5.11.187646 and earlier versions are vulnerable to an arbitrary file system write vulnerability. The vulnerability stems from the creation of...

CVE-2021-21100

Adobe Digital Editions 4.5.11.187245 and earlier are affected by a Privilege Escalation vulnerability during installation that allows arbitrary file system writes in the context of the current user. Exploitation requires user interaction (victim must open a malicious file). The issue is tracked a...

CVE-2021-21100 Adobe Digital Editions Arbitrary file system write vulnerability

Adobe Digital Editions version 4.5.11.187245 and earlier is affected by a Privilege Escalation vulnerability during installation. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary file system write in the context of the current user. Exploitation of this issue...

April 2021 Patch Tuesday – 108 Vulnerabilities, 19 Critical, Adobe

This month’s Microsoft Patch Tuesday addresses 108 vulnerabilities, of which 19 are rated critical severity and 88 are rated high severity. Adobe released patches for its Photoshop, Digital Editions, and Bridge products. CVE-2021-28310: Win32k Elevation of Privilege Vulnerability Microsoft releas...

Adobe Patches Slew of Critical Security Bugs in Bridge, Photoshop

Adobe has released security patches tackling four critical vulnerabilities in Adobe Bridge, along with other critical and important-rated updates for bugs in Adobe Digital Editions, Adobe Photoshop and RoboHelp. In all, Adobe fixed 10 security holes in its products during its scheduled April...

Adobe Releases Security Updates

Adobe has released security updates to address vulnerabilities in multiple Adobe products. An attacker could exploit these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the following Adobe Security Bulletins and apply the necessary...

APSB21-26 Security update available for Adobe Digital Editions

Adobe has released a security update for Adobe Digital Editions. This update resolves a critical vulnerability that could result in arbitrary file system write...

CVE-2020-3798

CVE-2020-3798 affects Adobe Digital Editions, specifically version 4.5.11.187212 and earlier on Windows, which is vulnerable to a file enumeration (host or local network) flaw that could lead to information disclosure. The root cause is information-disclosure via file enumeration within the appli...

Adobe Fixes 'Important' Flaws in ColdFusion, After Effects and Digital Editions

Adobe released security patches for vulnerabilities in its ColdFusion, After Effects and Digital Editions applications. If exploited, the flaws could enable attackers to view sensitive data, gain escalated privileges, and launch denial-of-service attacks. Each of the bugs were rated...

Adobe Releases Security Updates for Multiple Products

Adobe has released security updates to address vulnerabilities in multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected system. The Cybersecurity and Infrastructure Security Agency CISA encourages users and administrators to review the following...

APSB20-23 Security update available for Adobe Digital Editions

Adobe has released a security update for Adobe Digital Editions. This update resolves an important vulnerability that could result in information disclosure...

CVE-2020-3759

Adobe Digital Editions (Windows): CVE-2020-3759 is a buffer overflow (buffer errors) vulnerability in versions 4.5.10 and earlier that could disclose information; CVE-2020-3760 is a command-injection flaw in the same pre-4.5.11 range that could allow arbitrary code execution. The issues are addre...