Bulletin ID
Last updated on
16 May 2021
|
Also applies to Digital Editions
Security Updates Available for Adobe Digital Editions | APSB20-23
|
|
Date Published |
Priority |
|---|---|---|
|
APSB20-23 |
April 14, 2020 |
3 |
Summary
Adobe has released a security update for Adobe Digital Editions. This update resolves an important vulnerability that could result in information disclosure.
Affected product versions
|
Product |
Version |
Platform |
|---|---|---|
|
Adobe Digital Editions |
4.5.11.187212 and below |
Windows |
Solution
Adobe categorizes these updates with the following priority ratings and recommends users update their installation to the newest version:
|
Product |
Version |
Platform |
Priority |
Availability |
|---|---|---|---|---|
|
Adobe Digital Editions |
4.5.11.187303 |
Windows |
3 |
Note:
- Customers can download the update from the Adobe Digital Editions download page, or utilize the product’s update mechanism when prompted.
- For more information, please refer the release notes.
Vulnerability details
|
Vulnerability Category |
Vulnerability Impact |
Severity |
CVE Numbers |
|---|---|---|---|
|
File enumeration (host or local network) |
Information Disclosure |
Important |
CVE-2020-3798 |
Acknowledgments
Adobe would like to thank Gertjan Franken and Tom Van Goethem from imec-DistriNet, KU Leuven for reporting these issues and for working with Adobe to help protect our customers.