2 matches found
CVE-2017-17069
ActiveSetupN.exe in Amazon Audible for Windows prior to November 2017 is vulnerable to DLL hijacking: if the executable is started from a directory where an attacker has placed a malicious dwmapi.dll, an arbitrary DLL can be loaded, enabling code execution. Root cause: improper DLL loading by Act...
CVE-2019-11554
Affected: Audible Android app up to version 2.34.0. Issue: Missing SSL certificate validation in Adobe SDKs used by the app, allowing MITM attackers to cause a denial of service. Impact: Availability degradation. Root cause: SSL validation bypass in Adobe SDK integration. Remediation: Not specifi...