Vulnerability Details CVE-2020-3760
Adobe Digital Editions versions 4.5.10 and below have a command injection vulnerability. Successful exploitation could lead to arbitrary code execution.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.148
EPSS Ranking 94.1%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 10.0
References
Products affected by CVE-2020-3760
-
cpe:2.3:a:adobe:digital_editions:-
-
cpe:2.3:a:adobe:digital_editions:2.0.0
-
cpe:2.3:a:adobe:digital_editions:2.0.1
-
cpe:2.3:a:adobe:digital_editions:4.0.0
-
cpe:2.3:a:adobe:digital_editions:4.0.1
-
cpe:2.3:a:adobe:digital_editions:4.0.2
-
cpe:2.3:a:adobe:digital_editions:4.0.3
-
cpe:2.3:a:adobe:digital_editions:4.5.0
-
cpe:2.3:a:adobe:digital_editions:4.5.1
-
cpe:2.3:a:adobe:digital_editions:4.5.10
-
cpe:2.3:a:adobe:digital_editions:4.5.2
-
cpe:2.3:a:adobe:digital_editions:4.5.3
-
cpe:2.3:a:adobe:digital_editions:4.5.4
-
cpe:2.3:a:adobe:digital_editions:4.5.5
-
cpe:2.3:a:adobe:digital_editions:4.5.6
-
cpe:2.3:a:adobe:digital_editions:4.5.7
-
cpe:2.3:a:adobe:digital_editions:4.5.8
-
cpe:2.3:a:adobe:digital_editions:4.5.9
-
cpe:2.3:o:microsoft:windows:-