Digital Editions Security Vulnerabilities - CVSS Score 5 - 6
Adobe Digital Editions (DE) 4 does not use encryption for transmission of data to adelogs.adobe.com, which allows remote attackers to obtain sensitive information by sniffing the network, as demonstrated by book-navigation information.
6.2AI Score
0.008EPSS
Adobe Digital Editions versions 4.5.2 and earlier has an important vulnerability that could lead to memory address leak.
5.3CVSS
5.8AI Score
0.006EPSS
An issue was discovered in Adobe Digital Editions 4.5.6 and earlier versions. Adobe Digital Editions parses crafted XML files in an unsafe manner, which could lead to sensitive information disclosure.
5.5CVSS
5.1AI Score
0.001EPSS
An issue was discovered in Adobe Digital Editions 4.5.6 and earlier versions. An exploitable memory corruption vulnerability exists, which could lead to disclosure of memory addresses.
5.3CVSS
5.4AI Score
0.002EPSS
An issue was discovered in Adobe Digital Editions 4.5.6 and earlier versions. An exploitable memory corruption vulnerability exists, which could lead to disclosure of memory addresses.
5.3CVSS
5.4AI Score
0.002EPSS
An issue was discovered in Adobe Digital Editions 4.5.6 and earlier versions. An exploitable memory corruption vulnerability exists, which could lead to disclosure of memory addresses.
5.3CVSS
5.4AI Score
0.002EPSS
An issue was discovered in Adobe Digital Editions 4.5.6 and earlier versions. An exploitable memory corruption vulnerability exists, which could lead to disclosure of memory addresses.
5.3CVSS
5.4AI Score
0.002EPSS
An issue was discovered in Adobe Digital Editions 4.5.6 and earlier versions. An exploitable memory corruption vulnerability exists, which could lead to disclosure of memory addresses.
5.3CVSS
5.4AI Score
0.002EPSS
Adobe Digital Editions versions 4.5.7 and below have an exploitable Stack Overflow vulnerability. Successful exploitation could lead to information disclosure.
5.5CVSS
5.9AI Score
0.001EPSS