Bulletin ID
Last updated on
May 16, 2021
|
Also applies to Digital Editions
Security Updates Available for Adobe Digital Editions | APSB20-23
|
|
Date Published |
Priority |
|---|---|---|
|
APSB20-23 |
April 14, 2020 |
3 |
Summary
Adobe has released a security update for Adobe Digital Editions. This update resolves an important vulnerability that could result in information disclosure.
Affected product versions
|
Product |
Version |
Platform |
|---|---|---|
|
Adobe Digital Editions |
4.5.11.187212 and below |
Windows |
Solution
Adobe categorizes these updates with the following priority ratings and recommends users update their installation to the newest version:
|
Product |
Version |
Platform |
Priority |
Availability |
|---|---|---|---|---|
|
Adobe Digital Editions |
4.5.11.187303 |
Windows |
3 |
Note:
- Customers can download the update from the Adobe Digital Editions download page, or utilize the product’s update mechanism when prompted.
- For more information, please refer the release notes.
Vulnerability details
|
Vulnerability Category |
Vulnerability Impact |
Severity |
CVE Numbers |
|---|---|---|---|
|
File enumeration (host or local network) |
Information Disclosure |
Important |
CVE-2020-3798 |
Acknowledgments
Adobe would like to thank Gertjan Franken and Tom Van Goethem from imec-DistriNet, KU Leuven for reporting these issues and for working with Adobe to help protect our customers.
Adobe MAX
The Creativity Conference
Oct 14–16 Miami Beach and online
Adobe MAX
The Creativity Conference
Oct 14–16 Miami Beach and online