Arbitrary Command Execution Vulnerability in Adobe Digital Editions

Arbitrary Command Execution Vulnerability in Adobe Digital Editions

CVE-2021-39826 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

Adobe Digital Editions 4.5.11.187646 (and earlier) are affected by an arbitrary command execution vulnerability. An authenticated attacker could leverage this vulnerability to execute arbitrary commands. User interaction is required to abuse this vulnerability in that a user must open a maliciously crafted .epub file.

Learn more about our User Device Pen Test.