What is CVE-2021-39827?

CVE-2021-39827 is a medium-severity vulnerability in Adobe Digital Editions, classified under Creation of Temporary File in Directory with Insecure Permissions. CVSS score: 6.5/10. Published 2021-09-27.

How severe is CVE-2021-39827?

Medium severity. CVSS v3 base score is 6.5 out of 10.

Vulnerability in Adobe Digital Editions

CVE-2021-39827

Adobe Digital Editions 4.5.11.187646 (and earlier) are affected by an arbitrary file write vulnerability in the Digital Editions installer. An authenticated attacker could leverage this vulnerability to write an arbitrary file to the syste…

EPSS: 0.008 (75.1th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.5 (Medium). Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H.

Affected products

Adobe Digital Editions — versions unspecified

Weakness classification (CWE)

CWE-379 — Creation of Temporary File in Directory with Insecure Permissions

References

helpx.adobe.com/security/products/Digital-Editions/apsb21-80.html (x_refsource_MISC)

Frequently asked questions

What is CVE-2021-39827?: CVE-2021-39827 is a medium-severity vulnerability in Adobe Digital Editions, classified under Creation of Temporary File in Directory with Insecure Permissions. CVSS score: 6.5/10. Published 2021-09-27.
How severe is CVE-2021-39827?: Medium severity. CVSS v3 base score is 6.5 out of 10.