Adobe Security Bulletin

Security Updates Available for Adobe Digital Editions | APSB20-23

Bulletin ID

Date Published

Priority

APSB20-23

April 14, 2020   

3

Summary

Adobe has released a security update for Adobe Digital Editions. This update resolves an important vulnerability that could result in information disclosure.   

Affected product versions

Product

Version

Platform

Adobe Digital Editions

4.5.11.187212 and below   

Windows  

Solution

Adobe categorizes these updates with the following priority ratings and recommends users update their installation to the newest version:

Product

Version

Platform

Priority

Availability

Adobe Digital Editions

4.5.11.187303

Windows

3

Note:
  • Customers can download the update from the Adobe Digital Editions download page, or utilize the product’s update mechanism when prompted.
  • For more information, please refer the release notes.

Vulnerability details

Vulnerability Category

Vulnerability Impact

Severity

CVE Numbers

File enumeration (host or local network)

Information Disclosure

Important

CVE-2020-3798

Acknowledgments

Adobe would like to thank  Gertjan Franken and Tom Van Goethem from imec-DistriNet, KU Leuven for reporting these issues and for working with Adobe to help protect our customers.