Vulnerability Details CVE-2017-2977
Adobe Digital Editions versions 4.5.3 and earlier have an exploitable buffer over-read vulnerability. Successful exploitation could lead to information disclosure.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.03
EPSS Ranking 85.8%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
References
- http://www.securityfocus.com/bid/96195
- http://www.securitytracker.com/id/1037816
- https://helpx.adobe.com/security/products/Digital-Editions/apsb17-05.html
- http://www.securityfocus.com/bid/96195
- http://www.securitytracker.com/id/1037816
- https://helpx.adobe.com/security/products/Digital-Editions/apsb17-05.html
Products affected by CVE-2017-2977
-
cpe:2.3:a:adobe:digital_editions:-
-
cpe:2.3:a:adobe:digital_editions:2.0.0
-
cpe:2.3:a:adobe:digital_editions:2.0.1
-
cpe:2.3:a:adobe:digital_editions:4.0.0
-
cpe:2.3:a:adobe:digital_editions:4.0.1
-
cpe:2.3:a:adobe:digital_editions:4.0.2
-
cpe:2.3:a:adobe:digital_editions:4.0.3
-
cpe:2.3:a:adobe:digital_editions:4.5.0
-
cpe:2.3:a:adobe:digital_editions:4.5.1
-
cpe:2.3:a:adobe:digital_editions:4.5.2
-
cpe:2.3:a:adobe:digital_editions:4.5.3