409 matches found
CVE-2016-1019
CVE-2016-1019 affects Adobe Flash Player 21.0.0.197 and earlier. The initial description notes remote code execution via unspecified vectors with in-the-wild activity in April 2016. Connected documents place CVE-2016-1019 among vulnerabilities embedded in Neutrino EK and referenced by CISA KEV as...
CVE-2015-8651
CVE-2015-8651 is an Adobe Flash Player vulnerability described as an integer overflow that enables remote code execution. The initial entry lists affected Flash Player versions on Windows, OS X, and Linux, and notes exploitation to run arbitrary code via unspecified vectors. Connected sources con...
CVE-2016-1010
CVE-2016-1010 is an integer overflow vulnerability in Adobe Flash Player and Adobe AIR stack. Affected: Flash Player before 18.0.0.333 and 19.x–21.x before 21.0.0.182 on Windows/macOS; Flash before 11.2.202.577 on Linux; Adobe AIR before 21.0.0.176 and AIR SDK/Compiler before 21.0.0.176. Cause: i...
CVE-2016-0984
CVE-2016-0984 is a use-after-free vulnerability in Adobe Flash Player (and related AIR components) that enables arbitrary code execution. Affected products include Flash Player Windows/macOS (before 18.0.0.329 and 19.x prior to 20.0.0.306) and Linux (before 11.2.202.569), as well as Adobe AIR bef...
CVE-2014-8439
CVE-2014-8439 describes a dereferenced memory pointer vulnerability in Adobe Flash Player (and related AIR components) that could allow remote code execution. The initial entry lists multiple affected branches: Flash Player versions prior to 13.0.0.258, 14.x, and 15.x before 15.0.0.239 on Windows...
CVE-2016-0974
CVE-2016-0974 is a use-after-free vulnerability in Adobe Flash Player (Windows/macOS) and Adobe AIR/SDK/SDK & Compiler, with affected Flash Player versions before 18.0.0.329 and 19.x/20.x before 20.0.0.306 on Windows/macOS, and Linux before 11.2.202.569; Adobe AIR before 20.0.0.260. The issue ena...
CVE-2016-0963
CVE-2016-0963 is an integer overflow vulnerability in Adobe Flash Player (Windows/macOS: before 18.0.0.333 and 19.x through 21.x before 21.0.0.182; Linux: before 11.2.202.577) and in Adobe AIR together with AIR SDK/Compiler (before 21.0.0.176). The condition allows attackers to execute arbitrary ...
CVE-2016-0983
Technical details for CVE-2016-0983 are not publicly provided in the connected documents. The EUVD entries reference malware but do not specify product/version/root cause or remediation for this CVE. Monitor for updates.
CVE-2016-1015
CVE-2016-1015 is an Adobe Flash Player type confusion vulnerability. The affected products are Flash Player on Windows and macOS (versions before 18.0.0.343 and 19.x up to 21.x before 21.0.0.213) and Linux (before 11.2.202.616). The root cause is a type confusion error triggered by overriding Net...
CVE-2016-0982
CVE-2016-0982 corresponds to a use-after-free vulnerability in Adobe Flash Player (Windows/macOS: affected versions include before 18.0.0.329 and 19.x before 20.0.0.306; Linux: before 11.2.202.569) and in Adobe AIR (before 20.0.0.260; AIR SDK before 20.0.0.260; AIR SDK & Compiler before 20.0.0.26...
CVE-2016-0973
Technical details about CVE-2016-0973 are not publicly available in the provided connected documents. Monitor for updates.
CVE-2016-0993
CVE-2016-0993 describes an integer overflow in Adobe Flash Player (before 18.0.0.333 and 19.x–21.x before 21.0.0.182 on Windows/macOS; before 11.2.202.577 on Linux) and in Adobe AIR before 21.0.0.176, including AIR SDKs, that allows attackers to execute arbitrary code via unspecified vectors. Thi...
CVE-2016-0975
CVE-2016-0975 is a use-after-free vulnerability in the Flash/Adobe AIR stack arising from improper reference handling in the instanceof function. Affected products/usages: Adobe Flash Player before 18.0.0.329 and 19.x and before 20.0.0.306 on Windows and OS X, and before 11.2.202.569 on Linux; Ad...
CVE-2013-5330
CVE-2013-5330 is a memory corruption vulnerability in Adobe Flash Player and related Adobe AIR components, arising from an error in parsing specially crafted SWF files. Affected versions include Flash Player before 11.7.700.252 and 11.8.x and 11.9.x before 11.9.900.152 on Windows/macOS, and Linux...
CVE-2013-5331
Adobe Flash Player vulnerability CVE-2013-5331 is a type-confusion remote code execution issue affecting Flash Player on Windows, macOS and Linux prior to patched versions (e.g., 11.2.202.332 for many distributions; 11.9.900.170 in some branches). Exploitation was observed in the wild around Nove...
CVE-2012-5278
CVE-2012-5278 is one of multiple vulnerabilities affecting Adobe Flash Player and Adobe AIR; the issue allows bypassing intended access restrictions and arbitrary code execution. Public details in connected advisories identify Flash Player variants affected (Windows, Mac, Linux, Android) and indi...
CVE-2013-5324
CVE-2013-5324 relates to memory corruption in Adobe Flash Player and Adobe AIR. Affected components include Flash Player on Windows, macOS, Linux, Android (various versions) and Adobe AIR/SDK. The vulnerability could allow attackers to execute arbitrary code or cause a denial of service via memor...
CVE-2012-4163
CVE-2012-4163 is a memory-corruption/remote-code-execution vulnerability in Adobe Flash Player (and related Adobe AIR ) that could be exploited via unspecified vectors. Affected versions include Flash Player on Windows/Mac OS X prior to 10.3.183.23 and 11.x prior to 11.4.402.265, Linux prior to 1...
CVE-2012-4167
Adobe Flash Player and Flash plugin are affected by CVE-2012-4167 due to an integer overflow, enabling arbitrary code execution via unspecified vectors. This impacts multiple platforms and product lines (Windows, macOS, Linux, Android) prior to the specified fixed versions in the advisories. Red ...
CVE-2012-5677
CVE-2012-5677 affects Adobe Flash Player and Adobe AIR components. The initial description specifies an integer overflow in Flash Player before 10.3.183.48 and 11.x before 11.5.502.135/136 (various OSs), and Adobe AIR before 3.5.0.880/890, enabling arbitrary code execution via unspecified vectors...
CVE-2012-4165
CVE-2012-4165 concerns Adobe Flash Player and Flash runtime components (including AIR) with memory-corruption based remote code execution via unspecified vectors. Affected versions include Flash Player prior to 10.3.183.23 and software in the 11.x line before 11.4.402.265 on Windows/macOS; on Lin...
CVE-2012-5678
CVE-2012-5678 concerns Adobe Flash Player (and related AIR components) with multiple memory-corruption and code-execution vulnerabilities across Windows, Mac, Linux and Android platforms. Affected versions include Flash Player before 10.3.183.48 / 11.x before 11.5.502.135 on Windows, Mac, Linux; ...
CVE-2013-3362
CVE-2013-3362 affects Adobe Flash Player and Adobe AIR across multiple platforms. Affected Flash Player versions (before 11.7.700.242, 11.8.x before 11.8.800.168 on Windows/mac, before 11.2.202.310 on Linux, before 11.1.111.73 on Android 2.x/3.x, before 11.1.115.81 on Android 4.x) and AIR before ...
CVE-2013-3361
CVE-2013-3361 affects Adobe Flash Player and Adobe AIR with memory corruption vulnerabilities that could allow attackers to execute arbitrary code or cause a denial of service. Affected versions span multiple platforms: Flash Player before 11.7.700.242 and 11.8.x before 11.8.800.168 on Windows/ma...
CVE-2012-5676
CVE-2012-5676 concerns a buffer overflow in Adobe Flash Player and Adobe AIR that enables arbitrary code execution. The vulnerability affects multiple platforms: Flash Player before 10.3.183.48 and 11.x before 11.5.502.135 (Windows), before 10.3.183.48 and 11.x before 11.5.502.136 (Mac OS X), bef...
CVE-2013-0638
Adobe Flash Player and Adobe AIR are listed as vulnerable across multiple platforms (Windows, Mac OS X, Linux, Android) with CVE-2013-0638, due to memory corruption allowing arbitrary code execution or denial of service via unspecified vectors. Affected versions include Flash Player before 10.3.1...
CVE-2013-3363
CVE-2013-3363 affects Adobe Flash Player and Adobe AIR prior to specific fixed versions. The description lists vulnerable software: Flash Player before 11.7.700.242 and 11.8.x before 11.8.800.168 on Windows/Mac, before 11.2.202.310 on Linux, before 11.1.111.73 on Android 2.x/3.x, and before 11.1....
CVE-2015-5132
CVE-2015-5132 is a Flash Player buffer overflow vulnerability exploited via parsing of specially crafted SWF files. Affected: Windows/OS X Flash Player < 18.0.0.232; Linux Flash Player
CVE-2015-5133
Technical details about CVE-2015-5133 are not publicly provided in the supplied documents. Monitor for updates from official advisories; the connected entries reference the CVE but do not disclose specifics here.
CVE-2015-8068
Technical details about CVE-2015-8068 are not publicly available in the provided connected documents; no concrete affected products, versions, root cause, or remediation are disclosed here. Monitor for updates.
CVE-2015-7663
CVE-2015-7663 is a use-after-free vulnerability affecting Adobe Flash Player prior to 18.0.0.261 and 19.x prior to 19.0.0.245 on Windows/OS X, and prior to 11.2.202.548 on Linux; and Adobe AIR before 19.0.0.241 (and related SDK/Compiler). It allows attackers to execute arbitrary code via unspecif...
CVE-2015-8418
CVE-2015-8418 affects Adobe Flash Player (Windows/macOS: before 18.0.0.268 and 19.x; before 20.0.0.228 for 20.x on Windows/macOS; Linux: before 11.2.202.554) and Adobe AIR (before 20.0.0.204, including AIR SDK before 20.0.0.204) with memory corruption allowing arbitrary code execution or a denial...
CVE-2015-8634
CVE-2015-8634 describes a use-after-free vulnerability in Adobe Flash Player (Windows/macOS: prior to 18.0.0.324 and 19.x; prior to 20.0.0.267 for 20.x) and Linux prior to 11.2.202.559, as well as in Adobe AIR before 20.0.0.233 (including AIR SDK/Compiler before 20.0.0.233). It allows attackers t...
CVE-2013-5329
CVE-2013-5329 is a memory-corruption vulnerability in multiple Flash Player versions (Windows/macOS: prior to 11.9.900.152; Linux: prior to 11.2.202.327) and in related AIR components (AIR before 3.9.0.1210). Exploitation could lead to arbitrary code execution or a crash. The publicly referenced ...
CVE-2015-8061
Technical details (affected products, versions, root cause, fixes) are not provided in the connected documents for CVE-2015-8061; monitor for updates.
CVE-2015-3128
CVE-2015-3128 is a use-after-free vulnerability in Adobe Flash Player (Windows/OS X: affected builds include before 13.0.0.302 and 14.x up to 18.x before 18.0.0.203; Linux: before 11.2.202.481) and in Adobe AIR/ AIR SDK/ SDK & Compiler before 18.0.0.180. The issue allows remote code execution via...
CVE-2015-3097
CVE-2015-3097 is an information-disclosure issue in Adobe Flash embedded in Chrome (and other Flash runtimes) where the random Flash heap address was not chosen securely, enabling an attacker to predict the address. The Mac OS X Nessus entry for Google Chrome
CVE-2015-8459
Technical details about CVE-2015-8459 are not publicly available in the provided connected documents. Monitor for updates.
CVE-2014-0576
CVE-2014-0576 is a memory‑corruption vulnerability in Adobe Flash Player triggered by parsing a specially crafted SWF file, potentially allowing remote arbitrary code execution. Affected products/versions include Flash Player on Windows, OS X, and Linux (per the description), plus related AIR com...
CVE-2015-3085
CVE-2015-3085 is a remote-write-bypass vulnerability in Adobe Flash Player and related AIR components. Affects Flash Player before 13.0.0.289 and 14.x up to 17.x before 17.0.0.188 (Windows/macOS) and before 11.2.202.460 (Linux), as well as Adobe AIR before 17.0.0.172, and AIR SDKs before 17.0.0.1...
CVE-2015-3134
Technical details about CVE-2015-3134 (affected products, vulnerable components, impact, or fixes) are not publicly provided in the supplied documents. Monitor for updates.
CVE-2015-7632
CVE-2015-7632 is a buffer overflow in Adobe Flash Player and Adobe AIR that allows remote code execution via a Loader object with a crafted loaderBytes property. Affected products include Adobe Flash Player versions prior to 18.0.0.252 and 19.x prior to 19.0.0.207 on Windows/macOS, and prior to 1...
CVE-2015-7651
CVE-2015-7651 involves a use-after-free vulnerability in Adobe Flash Player before 18.0.0.261 and 19.x before 19.0.0.245 on Windows/OS X, and before 11.2.202.548 on Linux; Adobe AIR before 19.0.0.241 and AIR SDK/Compiler before 19.0.0.241. The root cause is use-after-free via crafted DefineFuncti...
CVE-2015-8424
Technical details for CVE-2015-8424 are not publicly available in the provided connected documents; monitor for updates.
CVE-2013-0637
Adobe Flash Player and AIR contain a vulnerability (CVE-2013-0637) that could allow a remote attacker to obtain sensitive information via unspecified vectors. Affected affected software/versions include Flash Player on Windows (before 10.3.183.63) and Windows 11.x before 11.6.602.168, Mac OS X (b...
CVE-2016-0998
CVE-2016-0998 is a use-after-free vulnerability in Adobe Flash Player (and related AIR components) that allows arbitrary code execution via unspecified vectors on Windows, OS X, and Linux, affecting Flash Player prior to 18.0.0.333 and 19.x–21.x before 21.0.0.182, and AIR before 21.0.0.176. The r...
CVE-2015-3104
CVE-2015-3104 is an integer overflow in Adobe Flash Player (Windows, macOS, Linux) and related Adobe AIR/SDK components. The flaw allows arbitrary code execution via unspecified vectors and affects Flash Player versions prior to 13.0.0.292, 14.x up to 18.x before 18.0.0.160 (Windows/macOS) and pr...
CVE-2015-3115
Technical details for CVE-2015-3115 are not provided in the connected documents; no specifics on affected products, impact, or fixes. Monitor for updates.
CVE-2015-5582
Summary: CVE-2015-5582 affects Adobe Flash Player and Adobe AIR components. A memory corruption vulnerability in Flash Player allows remote code execution or denial of service via parsing crafted media (SWF/MP4) payloads, with exploitable conditions indicated by related advisories. Affected produ...
CVE-2015-8414
Technical details for CVE-2015-8414 are not publicly available in the provided connected documents. Monitor for updates.