Adobe Digital Editions — known CVE vulnerabilities
Every CVE whose affected-product data names Adobe Digital Editions, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (71)
CVE-2017-3088 — CVSS 10.0 (critical): Adobe Digital Editions versions 4.5.4 and earlier have an exploitable memory corruption vulnerability in the PDF runtime engine. Successful…
CVE-2014-0494 — CVSS 10.0 (critical): Adobe Digital Editions 2.0.1 allows attackers to execute arbitrary code or cause a denial of service (memory corruption and application…
CVE-2013-1377 — CVSS 10.0 (critical): Adobe Digital Editions 2.x before 2.0.1 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via…
CVE-2016-4262 — CVSS 9.8 (critical): Adobe Digital Editions before 4.5.2 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via…
CVE-2016-4263 — CVSS 9.8 (critical): Use-after-free vulnerability in Adobe Digital Editions before 4.5.2 allows attackers to execute arbitrary code via unspecified vectors.
CVE-2016-6980 — CVSS 9.8 (critical): Use-after-free vulnerability in Adobe Digital Editions before 4.5.2 allows attackers to execute arbitrary code via unspecified vectors, a…
CVE-2017-3089 — CVSS 9.8 (critical): Adobe Digital Editions versions 4.5.4 and earlier have an exploitable memory corruption vulnerability in the PDF imaging model. Successful…
CVE-2017-3090 — CVSS 9.8 (critical): Adobe Digital Editions versions 4.5.4 and earlier contain an insecure library loading vulnerability. The vulnerability is due to unsafe…
CVE-2017-3097 — CVSS 9.8 (critical): Adobe Digital Editions versions 4.5.4 and earlier contain an insecure library loading vulnerability. The vulnerability is due to unsafe…
CVE-2017-3092 — CVSS 9.8 (critical): Adobe Digital Editions versions 4.5.4 and earlier contain an insecure library loading vulnerability. The vulnerability is due to unsafe…
CVE-2017-3093 — CVSS 9.8 (critical): Adobe Digital Editions versions 4.5.4 and earlier have an exploitable memory corruption vulnerability in the bitmap representation module…
CVE-2017-3094 — CVSS 9.8 (critical): Adobe Digital Editions versions 4.5.4 and earlier have an exploitable memory corruption vulnerability in the PDF processing engine…
CVE-2017-3095 — CVSS 9.8 (critical): Adobe Digital Editions versions 4.5.4 and earlier have an exploitable memory corruption vulnerability in the PDF parsing engine. Successful…
CVE-2017-3096 — CVSS 9.8 (critical): Adobe Digital Editions versions 4.5.4 and earlier have an exploitable memory corruption vulnerability in the character code mapping module…
CVE-2017-2973 — CVSS 9.8 (critical): Adobe Digital Editions versions 4.5.3 and earlier have an exploitable heap overflow vulnerability. Successful exploitation could lead to…
CVE-2016-4260 — CVSS 9.8 (critical): Adobe Digital Editions before 4.5.2 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via…
CVE-2016-4261 — CVSS 9.8 (critical): Adobe Digital Editions before 4.5.2 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via…
CVE-2018-12814 — CVSS 9.8 (critical): Adobe Digital Editions versions 4.5.8 and below have a heap overflow vulnerability. Successful exploitation could lead to arbitrary code…
CVE-2018-12813 — CVSS 9.8 (critical): Adobe Digital Editions versions 4.5.8 and below have a heap overflow vulnerability. Successful exploitation could lead to arbitrary code…
CVE-2016-4259 — CVSS 9.8 (critical): Adobe Digital Editions before 4.5.2 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via…
CVE-2020-3760 — CVSS 9.8 (critical): Adobe Digital Editions versions 4.5.10 and below have a command injection vulnerability. Successful exploitation could lead to arbitrary…
CVE-2017-11274 — CVSS 9.8 (critical): Adobe Digital Editions 4.5.4 and earlier has an exploitable use after free vulnerability. Successful exploitation could lead to arbitrary…
CVE-2016-0954 — CVSS 9.8 (critical): Adobe Digital Editions before 4.5.1 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via…
CVE-2016-4256 — CVSS 9.8 (critical): Adobe Digital Editions before 4.5.2 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via…
CVE-2016-4257 — CVSS 9.8 (critical): Adobe Digital Editions before 4.5.2 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via…
CVE-2016-4258 — CVSS 9.8 (critical): Adobe Digital Editions before 4.5.2 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via…
CVE-2019-7095 — CVSS 9.8 (critical): Adobe Digital Editions versions 4.5.10.185749 and below have a heap overflow vulnerability. Successful exploitation could lead to arbitrary…
CVE-2018-12823 — CVSS 9.8 (critical): Adobe Digital Editions versions 4.5.8 and below have a heap overflow vulnerability. Successful exploitation could lead to arbitrary code…
CVE-2018-12822 — CVSS 9.8 (critical): Adobe Digital Editions versions 4.5.8 and below have an use after free vulnerability. Successful exploitation could lead to arbitrary code…
CVE-2021-39826 — CVSS 8.6 (high): Adobe Digital Editions 4.5.11.187646 (and earlier) are affected by an arbitrary command execution vulnerability. An authenticated attacker…
CVE-2023-21582 — CVSS 7.8 (high): Adobe Digital Editions version 4.5.11.187303 (and earlier) is affected by an out-of-bounds write vulnerability that could result in…
CVE-2021-21100 — CVSS 7.8 (high): Adobe Digital Editions version 4.5.11.187245 (and earlier) is affected by a Privilege Escalation vulnerability during installation. An…
CVE-2017-3091 — CVSS 7.5 (high): Adobe Digital Editions 4.5.4 and earlier versions 4.5.4 and earlier have an exploitable memory corruption vulnerability. Successful…
CVE-2016-7889 — CVSS 7.5 (high): Adobe Digital Editions versions 4.5.2 and earlier has an issue with parsing crafted XML entries that could lead to information disclosure.
CVE-2017-11275 — CVSS 7.5 (high): Adobe Digital Editions 4.5.4 and earlier has an exploitable heap overflow vulnerability. Successful exploitation could lead to arbitrary…
CVE-2017-11276 — CVSS 7.5 (high): Adobe Digital Editions 4.5.4 and earlier has an exploitable memory corruption vulnerability. Successful exploitation could lead to…
CVE-2017-11277 — CVSS 7.5 (high): Adobe Digital Editions 4.5.4 and earlier has an exploitable memory corruption vulnerability. Successful exploitation could lead to…
CVE-2017-11278 — CVSS 7.5 (high): Adobe Digital Editions 4.5.4 and earlier has an exploitable memory corruption vulnerability. Successful exploitation could lead to…
CVE-2017-11279 — CVSS 7.5 (high): Adobe Digital Editions 4.5.4 and earlier has an exploitable use after free vulnerability. Successful exploitation could lead to arbitrary…
CVE-2017-11280 — CVSS 7.5 (high): Adobe Digital Editions 4.5.4 and earlier has an exploitable memory corruption vulnerability. Successful exploitation could lead to…
CVE-2017-2974 — CVSS 7.5 (high): Adobe Digital Editions versions 4.5.3 and earlier have an exploitable buffer over-read vulnerability. Successful exploitation could lead to…
CVE-2017-2975 — CVSS 7.5 (high): Adobe Digital Editions versions 4.5.3 and earlier have an exploitable buffer over-read vulnerability. Successful exploitation could lead to…
CVE-2017-2976 — CVSS 7.5 (high): Adobe Digital Editions versions 4.5.3 and earlier have an exploitable buffer over-read vulnerability. Successful exploitation could lead to…
CVE-2017-2977 — CVSS 7.5 (high): Adobe Digital Editions versions 4.5.3 and earlier have an exploitable buffer over-read vulnerability. Successful exploitation could lead to…
CVE-2017-2978 — CVSS 7.5 (high): Adobe Digital Editions versions 4.5.3 and earlier have an exploitable buffer over-read vulnerability. Successful exploitation could lead to…
CVE-2017-2979 — CVSS 7.5 (high): Adobe Digital Editions versions 4.5.3 and earlier have an exploitable buffer over-read vulnerability. Successful exploitation could lead to…
CVE-2017-2980 — CVSS 7.5 (high): Adobe Digital Editions versions 4.5.3 and earlier have an exploitable buffer over-read vulnerability. Successful exploitation could lead to…
CVE-2017-2981 — CVSS 7.5 (high): Adobe Digital Editions versions 4.5.3 and earlier have an exploitable buffer over-read vulnerability. Successful exploitation could lead to…
CVE-2018-12816 — CVSS 7.5 (high): Adobe Digital Editions versions 4.5.8 and below have an out of bounds read vulnerability. Successful exploitation could lead to information…
CVE-2018-12817 — CVSS 7.5 (high): Adobe Digital Editions versions 4.5.9 and below have an out of bounds read vulnerability. Successful exploitation could lead to information…
CVE-2018-12818 — CVSS 7.5 (high): Adobe Digital Editions versions 4.5.8 and below have an out of bounds read vulnerability. Successful exploitation could lead to information…
CVE-2018-12819 — CVSS 7.5 (high): Adobe Digital Editions versions 4.5.8 and below have an out of bounds read vulnerability. Successful exploitation could lead to information…
CVE-2018-12820 — CVSS 7.5 (high): Adobe Digital Editions versions 4.5.8 and below have an out of bounds read vulnerability. Successful exploitation could lead to information…
CVE-2018-12821 — CVSS 7.5 (high): Adobe Digital Editions versions 4.5.8 and below have an out of bounds read vulnerability. Successful exploitation could lead to information…
CVE-2018-4925 — CVSS 7.5 (high): Adobe Digital Editions versions 4.5.7 and below have an exploitable Out-of-bounds read vulnerability. Successful exploitation could lead to…
CVE-2020-3759 — CVSS 7.5 (high): Adobe Digital Editions versions 4.5.10 and below have a buffer errors vulnerability. Successful exploitation could lead to information…
CVE-2020-3798 — CVSS 6.5 (medium): Adobe Digital Editions versions 4.5.11.187212 and below have a file enumeration (host or local network) vulnerability. Successful…
CVE-2021-39827 — CVSS 6.5 (medium): Adobe Digital Editions 4.5.11.187646 (and earlier) are affected by an arbitrary file write vulnerability in the Digital Editions installer…
CVE-2021-39828 — CVSS 5.8 (medium): Adobe Digital Editions 4.5.11.187646 (and earlier) are affected by a privilege escalation vulnerability in the Digital Editions installer…
CVE-2018-4926 — CVSS 5.5 (medium): Adobe Digital Editions versions 4.5.7 and below have an exploitable Stack Overflow vulnerability. Successful exploitation could lead to…
CVE-2017-11273 — CVSS 5.5 (medium): An issue was discovered in Adobe Digital Editions 4.5.6 and earlier versions. Adobe Digital Editions parses crafted XML files in an unsafe…
CVE-2017-11301 — CVSS 5.3 (medium): An issue was discovered in Adobe Digital Editions 4.5.6 and earlier versions. An exploitable memory corruption vulnerability exists, which…
CVE-2017-11299 — CVSS 5.3 (medium): An issue was discovered in Adobe Digital Editions 4.5.6 and earlier versions. An exploitable memory corruption vulnerability exists, which…
CVE-2017-11298 — CVSS 5.3 (medium): An issue was discovered in Adobe Digital Editions 4.5.6 and earlier versions. An exploitable memory corruption vulnerability exists, which…
CVE-2017-11297 — CVSS 5.3 (medium): An issue was discovered in Adobe Digital Editions 4.5.6 and earlier versions. An exploitable memory corruption vulnerability exists, which…
CVE-2017-11300 — CVSS 5.3 (medium): An issue was discovered in Adobe Digital Editions 4.5.6 and earlier versions. An exploitable memory corruption vulnerability exists, which…
CVE-2016-7888 — CVSS 5.3 (medium): Adobe Digital Editions versions 4.5.2 and earlier has an important vulnerability that could lead to memory address leak.
CVE-2014-8068 — CVSS 5.0 (medium): Adobe Digital Editions (DE) 4 does not use encryption for transmission of data to adelogs.adobe.com, which allows remote attackers to…
CVE-2002-1016 — CVSS 4.6 (medium): Adobe eBook Reader allows a user to bypass restrictions for copy, print, lend, and give operations by backing up key data files, performing…
CVE-2002-1017 — CVSS 2.1 (low): Adobe eBook Reader 2.1 and 2.2 allows a user to copy eBooks to other systems by using the backup feature, capturing the encryption…