vulnerability

Adobe Digital Editions: APSB17-20 (CVE-2017-3090): Security updates available for Adobe Digital Editions

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
10	(AV:N/AC:L/Au:N/C:C/I:C/A:C)	Jun 20, 2017	Oct 3, 2017	Mar 27, 2026

Severity

CVSS

(AV:N/AC:L/Au:N/C:C/I:C/A:C)

Published

Jun 20, 2017

Added

Oct 3, 2017

Modified

Mar 27, 2026

Description

Adobe Digital Editions versions 4.5.4 and earlier contain an insecure library loading vulnerability. The vulnerability is due to unsafe library loading of browser related library extensions in the installer plugin. A successful exploitation could lead to arbitrary code execution.

Solution

adobe-digitaleditions-upgrade-4_5_5

References

CVE-2017-3090
https://attackerkb.com/topics/CVE-2017-3090
CWE-427
EUVD-EUVD-2017-12231
http://helpx.adobe.com/security/products/Digital-Editions/apsb17-20.html
https://euvd.enisa.europa.eu/vulnerability/EUVD-2017-12231

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today