Adobe released patches for two bugs rated “important” in its Adobe Digital Edition and Adobe Connect products.
The two important vulnerabilities, patched Tuesday, include an information disclosure bug in Adobe’s ebook reader software program, Digital Edition; as well as a session token exposure bug in its presentation and web conferencing software, Adobe Connect.
The “important” out of bounds read bug, CVE-2018-12817, is an information disclosure vulnerability impacting Adobe Digital Edition versions 4.5.9 and earlier, for Windows, macOS, iOS and Android. Jaanus Kääp of Clarified Security was credited with discovering the issue.
