CVE-2021-39826: Adobe Digital Editions Command Execution Vulnerability
First published: Mon Sep 27 2021(Updated: )
Adobe Digital Editions 4.5.11.187646 (and earlier) are affected by an arbitrary command execution vulnerability. An authenticated attacker could leverage this vulnerability to execute arbitrary commands. User interaction is required to abuse this vulnerability in that a user must open a maliciously crafted .epub file.
Credit: psirt@adobe.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Adobe Digital Editions | <=4.5.11.187646 | |
| Apple macOS |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2021-39826?
CVE-2021-39826 is an arbitrary command execution vulnerability in Adobe Digital Editions 4.5.11.187646 and earlier versions.
How severe is CVE-2021-39826?
CVE-2021-39826 has a severity rating of 8.6, which is considered critical.
What software versions are affected by CVE-2021-39826?
Adobe Digital Editions 4.5.11.187646 and earlier versions are affected by CVE-2021-39826.
How can an attacker exploit CVE-2021-39826?
An authenticated attacker can exploit CVE-2021-39826 by leveraging the vulnerability to execute arbitrary commands, requiring user interaction to open a malicious file or content.
Is Apple macOS affected by CVE-2021-39826?
No, Apple macOS is not affected by CVE-2021-39826.
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/remedy
- agent/severity
- agent/title
- agent/last-modified-date
- agent/weakness
- agent/references
- agent/author
- agent/tags
- agent/description
- agent/first-publish-date
- agent/event
- vendor/adobe
- canonical/adobe digital editions
- version/adobe digital editions/4.5.11.187646
- vendor/apple
- canonical/apple macos