CVE-2021-39826

Adobe Digital Editions 4.5.11.187646 (and earlier) are affected by an arbitrary command execution vulnerability. An authenticated attacker could leverage this vulnerability to execute arbitrary commands. User interaction is required to abuse this vulnerability in that a user must open a maliciously crafted .epub file.

Published: Sep 27, 2021
Updated: Apr 14, 2023
CVE: CVE-2021-39826
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

CWEs:

CWE-78

OWASP TOP 10:

A1 - Injection

Affected Software
References

Software	From	Fixed in
adobe / digital_editions	-	4.5.11.187646.x

https://helpx.adobe.com/security/products/Digital-Editions/apsb21-80.html

Vulnerability Database

CVE-2021-39826