88 matches found
CVE-2016-1019
CVE-2016-1019 affects Adobe Flash Player 21.0.0.197 and earlier. The initial description notes remote code execution via unspecified vectors with in-the-wild activity in April 2016. Connected documents place CVE-2016-1019 among vulnerabilities embedded in Neutrino EK and referenced by CISA KEV as...
CVE-2016-1010
CVE-2016-1010 is an integer overflow vulnerability in Adobe Flash Player and Adobe AIR stack. Affected: Flash Player before 18.0.0.333 and 19.x–21.x before 21.0.0.182 on Windows/macOS; Flash before 11.2.202.577 on Linux; Adobe AIR before 21.0.0.176 and AIR SDK/Compiler before 21.0.0.176. Cause: i...
CVE-2016-0984
CVE-2016-0984 is a use-after-free vulnerability in Adobe Flash Player (and related AIR components) that enables arbitrary code execution. Affected products include Flash Player Windows/macOS (before 18.0.0.329 and 19.x prior to 20.0.0.306) and Linux (before 11.2.202.569), as well as Adobe AIR bef...
CVE-2016-0974
CVE-2016-0974 is a use-after-free vulnerability in Adobe Flash Player (Windows/macOS) and Adobe AIR/SDK/SDK & Compiler, with affected Flash Player versions before 18.0.0.329 and 19.x/20.x before 20.0.0.306 on Windows/macOS, and Linux before 11.2.202.569; Adobe AIR before 20.0.0.260. The issue ena...
CVE-2016-0963
CVE-2016-0963 is an integer overflow vulnerability in Adobe Flash Player (Windows/macOS: before 18.0.0.333 and 19.x through 21.x before 21.0.0.182; Linux: before 11.2.202.577) and in Adobe AIR together with AIR SDK/Compiler (before 21.0.0.176). The condition allows attackers to execute arbitrary ...
CVE-2016-0983
Technical details for CVE-2016-0983 are not publicly provided in the connected documents. The EUVD entries reference malware but do not specify product/version/root cause or remediation for this CVE. Monitor for updates.
CVE-2016-1015
CVE-2016-1015 is an Adobe Flash Player type confusion vulnerability. The affected products are Flash Player on Windows and macOS (versions before 18.0.0.343 and 19.x up to 21.x before 21.0.0.213) and Linux (before 11.2.202.616). The root cause is a type confusion error triggered by overriding Net...
CVE-2016-0982
CVE-2016-0982 corresponds to a use-after-free vulnerability in Adobe Flash Player (Windows/macOS: affected versions include before 18.0.0.329 and 19.x before 20.0.0.306; Linux: before 11.2.202.569) and in Adobe AIR (before 20.0.0.260; AIR SDK before 20.0.0.260; AIR SDK & Compiler before 20.0.0.26...
CVE-2016-0973
Technical details about CVE-2016-0973 are not publicly available in the provided connected documents. Monitor for updates.
CVE-2016-0993
CVE-2016-0993 describes an integer overflow in Adobe Flash Player (before 18.0.0.333 and 19.x–21.x before 21.0.0.182 on Windows/macOS; before 11.2.202.577 on Linux) and in Adobe AIR before 21.0.0.176, including AIR SDKs, that allows attackers to execute arbitrary code via unspecified vectors. Thi...
CVE-2016-0975
CVE-2016-0975 is a use-after-free vulnerability in the Flash/Adobe AIR stack arising from improper reference handling in the instanceof function. Affected products/usages: Adobe Flash Player before 18.0.0.329 and 19.x and before 20.0.0.306 on Windows and OS X, and before 11.2.202.569 on Linux; Ad...
CVE-2016-0998
CVE-2016-0998 is a use-after-free vulnerability in Adobe Flash Player (and related AIR components) that allows arbitrary code execution via unspecified vectors on Windows, OS X, and Linux, affecting Flash Player prior to 18.0.0.333 and 19.x–21.x before 21.0.0.182, and AIR before 21.0.0.176. The r...
CVE-2016-0969
Technical details about CVE-2016-0969 are not provided in the connected documents. Monitoring for updates is advised; no explicit affected products, versions, or fixes are stated in the supplied EUVD entries.
CVE-2016-1021
Technical details about CVE-2016-1021 are not publicly provided in the connected documents; monitor for updates.
CVE-2016-0960
CVE-2016-0960 affects Adobe Flash Player prior to 18.0.0.333 and 19.x up to 21.x before 21.0.0.182 on Windows/macOS, and prior to 11.2.202.577 on Linux, plus Adobe AIR before 21.0.0.176 (and AIR SDK/Compiler before 21.0.0.176). The vulnerability allows attackers to execute arbitrary code or cause...
CVE-2014-0569
CVE-2014-0569 is an integer overflow vulnerability in Adobe Flash Player (and related AIR components) that could allow remote code execution. Affected products/versions (per initial entry) include Flash Player before 13.0.0.250 and 14.x before 15.0.0.189 on Windows/macOS and before 11.2.202.411 o...
CVE-2016-0980
Technical details about CVE-2016-0980 are not publicly provided in the supplied documents; the EUVD entries mention malware but do not describe affected software, root cause, or fixes. Monitor for updates.
CVE-2015-8655
Technical details (affected products, vulnerable components, impact, or fixes) for CVE-2015-8655 are not provided in the supplied documents; no exploit specifics or patch information are present. Monitor for updates.
CVE-2016-1012
Technical details about CVE-2016-1012 are not provided in the supplied documents. Monitor EUVD entries for updates; no public details on affected products, impact, or fixes are included here.
CVE-2015-8652
Technical details for CVE-2015-8652 are not publicly provided in the supplied connected documents; monitor for updates.
CVE-2016-0990
Technical details are not publicly available in the provided documents. Monitor for updates.
CVE-2016-0995
Technical details for CVE-2016-0995 are not publicly provided in the supplied documents; no affected products, vectors, or remediation are specified here. Monitor for updates.
CVE-2016-1006
Adobe Flash Player vulnerability CVE-2016-1006 allows bypass of ASLR via JIT data. Affected products and versions (from the provided sources) include Windows and OS X Flash Player versions before 18.0.0.343 and 19.x up to 21.x before 21.0.0.213, and Linux Flash Player before 11.2.202.616. The roo...
CVE-2016-0988
Technical details for CVE-2016-0988 are not publicly provided in the connected documents above; no concrete affected versions, vulnerable components, or remediation are present. Monitor for updates.
CVE-2016-1000
Technical details about CVE-2016-1000 are not publicly provided in the supplied documents; no vendor, affected products, or remediation details are present. Monitor for updates.
CVE-2016-0964
Technical details about CVE-2016-0964 are not publicly available in the provided connected documents; monitor for updates.
CVE-2014-0564
CVE-2014-0564 affects Adobe Flash Player before 13.0.0.250, 14.x before 15.0.0.189 on Windows/macOS and before 11.2.202.411 on Linux, as well as Adobe AIR before 15.0.0.293 and related AIR SDKs, allowing arbitrary code execution or memory corruption via unspecified vectors (distinct from CVE-2014...
CVE-2016-1005
CVE-2016-1005 affects Adobe Flash Player (Windows/OS X: before 21.0.0.182; Linux: before 11.2.202.577) and Adobe AIR/AIR SDK/SDK Compiler (before 21.0.0.176). The vulnerability allows attackers to execute arbitrary code or cause a denial of service via crafted MPEG-4 data due to an uninitialized ...
CVE-2016-4121
Adobe Flash Player contains a use-after-free vulnerability (CVE-2016-4121) affecting Windows and OS X up to 18.0.0.352, and 19.x–21.x up to 21.0.0.242, and Linux up to 11.2.202.621. The issue allows an attacker to execute arbitrary code via unspecified vectors. Affected versions include Flash Pla...
CVE-2015-8654
Technical details about CVE-2015-8654 are not publicly available in the provided connected documents. No concrete information on affected products, versions, or fixes is present. Monitor for updates from official advisories.
CVE-2016-0961
Technical details for CVE-2016-0961 are not publicly available in the provided documents. Monitor for updates and further disclosures.
CVE-2016-0967
Technical details are not publicly available in the provided documents for CVE-2016-0967; connected EUVD entries only note malware in sbrugna without linking to specific root cause, affected products, or fixes. Monitor for updates.
CVE-2016-0991
A use-after-free vulnerability in Adobe Flash Player (before 18.0.0.333 and 19.x through 21.x before 21.0.0.182 on Windows/macOS; before 11.2.202.577 on Linux) and in Adobe AIR components enables arbitrary code execution via unspecified vectors. The entry CVE-2016-0991 also notes these are distin...
CVE-2016-0965
Adobe Flash Player and Adobe AIR vulnerabilities (CVE-2016-0965) allow attackers to execute arbitrary code or cause memory corruption via unspecified vectors. Affected: Adobe Flash Player on Windows/macOS prior to 18.0.0.329 and 19.x/20.x prior to 20.0.0.306; Linux before 11.2.202.569. Affected A...
CVE-2016-0970
The CVE-2016-0970 entry concerns multiple Adobe products: Flash Player prior to 18.0.0.329 (and 19.x prior to 20.0.0.306 on Windows/OS X; prior to 11.2.202.569 on Linux) and Adobe AIR prior to 20.0.0.260 (including AIR SDK before 20.0.0.260 and AIR SDK & Compiler before 20.0.0.260). It describes ...
CVE-2016-0981
Technical details for CVE-2016-0981 are not publicly available in the provided documents. Monitor for updates from official sources.
CVE-2016-0994
The CVE-2016-0994 use-after-free in Adobe Flash Player (pre-18.0.0.333; 19.x–21.x pre-21.0.0.182 on Windows/macOS; pre-11.2.202.577 on Linux) and Adobe AIR pre-21.0.0.176 (SDKs/Compiler) allows arbitrary code execution via crafted arguments to actionCallMethod opcode. Affected components: Flash P...
CVE-2016-0996
Technical details for CVE-2016-0996 are not publicly provided in the supplied documents. Monitor for updates.
CVE-2016-0997
CVE-2016-0997 is a use-after-free vulnerability in Adobe Flash Player (Windows, OS X, Linux) and Adobe AIR/SDK/SDK & Compiler that can allow arbitrary code execution via unspecified vectors. Affected: Flash Player before 18.0.0.333 and 19.x up to 21.x before 21.0.0.182; Linux before 11.2.202.577;...
CVE-2016-0999
CVE-2016-0999 is a use-after-free in Adobe Flash Player (Windows/OS X: before 18.0.0.333 and 19.x up to 21.x before 21.0.0.182; Linux: before 11.2.202.577) and Adobe AIR before 21.0.0.176, enabling arbitrary code execution via unspecified vectors. A remote code execution bug tied to a crafted SWF...
CVE-2016-1001
Adobe Flash Player and AIR (including AIR SDK variants) are affected by a heap-based buffer overflow (CVE-2016-1001) that could allow arbitrary code execution. Affected are Flash Player prior to 18.0.0.333 and 19.x–21.x prior to 21.0.0.182 on Windows/OS X, and prior to 11.2.202.577 on Linux; AIR ...
CVE-2016-1013
CVE-2016-1013 is a use-after-free vulnerability in Adobe Flash Player affecting Windows/macOS (before 18.0.0.343 and 19.x through 21.x before 21.0.0.213) and Linux (before 11.2.202.616) that allows arbitrary code execution via unspecified vectors. The entry notes this is a distinct issue from CVE...
CVE-2016-0972
CVE-2016-0972 affects Adobe Flash Player (Windows, OS X, Linux) prior to 18.0.0.329 and 19.x before 20.0.0.306, and Adobe AIR before 20.0.0.260 (and AIR SDK/Compiler before 20.0.0.260). The vulnerability allows attackers to execute arbitrary code or cause a denial of service (memory corruption) v...
CVE-2016-1011
CVE-2016-1011 is a use-after-free vulnerability in Adobe Flash Player affecting the LoadVars.decode path. Affected are Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows/macOS, and before 11.2.202.616 on Linux. Successful exploitation could allow arbitrary code exec...
CVE-2016-4120
Technical details for CVE-2016-4120 are not provided in the connected documents; public information is not available here. Monitor for updates.
CVE-2016-0977
Technical details for CVE-2016-0977 are not publicly available in the provided documents. Monitor for updates from authoritative sources.
CVE-2016-0986
Technical details for CVE-2016-0986 are not publicly available in the provided connected documents; no concrete affected products, vulnerable components, or remediation specifics are present. Monitor for updates.
CVE-2016-1014
CVE-2016-1014 affects Adobe Flash Player. It is an untrusted search path vulnerability that could let local users gain privileges via a Trojan horse resource in an unspecified directory. Affected products/versions include Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on W...
CVE-2016-1016
CVE-2016-1016 is a use-after-free in Adobe Flash Player’s Transform object implementation. Affected versions include Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows/OS X, and before 11.2.202.616 on Linux. The root cause is a use-after-free triggered via a flash.g...
CVE-2016-1024
Technical details for CVE-2016-1024 are not provided in the connected documents. The initial CVE description lists a Flash vulnerability with unspecified vectors; no product/version/root cause/fix details are supplied here. Monitor for updates.