Lucene search
+L
AdobeFlash Player Desktop Runtime

294 matches found

CVE
CVE
added 2016/06/16 2:0 p.m.92 views

CVE-2016-4156

CVE-2016-4156 is an unspecified vulnerability in Adobe Flash Player 21.0.0.242 and earlier, used in the Flash libraries for Microsoft Internet Explorer 10/11 and Edge. The description notes unknown impact and attack vectors and distinguishes it from MS16-083. Connected documents show this family ...

9.3CVSS8.9AI score0.04387EPSS
CVE
CVE
added 2016/09/14 6:0 p.m.92 views

CVE-2016-4271

Adobe Flash Player (Windows/macOS: prior to 18.0.0.375 and 19.x up to 23.x before 23.0.0.162; Linux: before 11.2.202.635) is associated with CVE-2016-4271, described as bypassing intended access restrictions and enabling information disclosure via unspecified vectors. Connected advisories show pa...

6.5CVSS7.2AI score0.04555EPSS
CVE
CVE
added 2016/09/14 6:0 p.m.92 views

CVE-2016-6927

Technical details for CVE-2016-6927 are not publicly available in the provided documents. Connected EUVD entries mention malware but do not describe the vulnerability. Monitor for updates.

9.3CVSS9AI score0.0604EPSS
CVE
CVE
added 2016/10/13 7:0 p.m.92 views

CVE-2016-6987

CVE-2016-6987 is a use-after-free vulnerability in Adobe Flash Player that allows remote code execution via unspecified vectors, with exploitation demonstrated by a remote attacker enticing a user to open a crafted SWF. Affected versions include Flash Player before 18.0.0.382 and 19.x through 23....

9.3CVSS8.9AI score0.05076EPSS
CVE
CVE
added 2017/02/15 6:11 a.m.92 views

CVE-2017-2991

Adobe Flash Player versions 24.0.0.194 and earlier contain a memory corruption vulnerability in the h264 codec (decompression). Successful exploitation could lead to arbitrary code execution. The CVE is referenced across multiple advisories, with fixes in version 24.0.0.221 (and newer) recommende...

9.3CVSS8.9AI score0.08666EPSS
CVE
CVE
added 2017/03/14 4:0 p.m.92 views

CVE-2017-3001

CVE-2017-3001 is a use-after-free vulnerability in Adobe Flash Player up to version 24.0.0.221 related to garbage collection in the ActionScript 2 VM. The issue could allow remote code execution if exploited. Affected: Flash Player

9.3CVSS8.8AI score0.05099EPSS
CVE
CVE
added 2018/05/19 5:0 p.m.92 views

CVE-2018-4932

Summary: CVE-2018-4932 affects Adobe Flash Player and is a Use-After-Free vulnerability that could allow remote code execution in the user context. The issue impacts Flash Player versions 29.0.0.113 and earlier. Public advisories (APSB18-08) describe a fix in newer releases; updated versions incl...

9.3CVSS8.8AI score0.05175EPSS
CVE
CVE
added 2018/07/09 7:0 p.m.92 views

CVE-2018-5001

CVE-2018-5001 describes an out-of-bounds read in Adobe Flash Player prior to version 30.0.0.113, leading to information disclosure. Connected advisories (Arch Linux ASA-201806-7, FreeBSD VUXML 2DDE5A56, CVE listings) confirm the vulnerability affects Flash Player before 30.0.0.113 and is mitigate...

6.5CVSS6.7AI score0.13346EPSS
CVE
CVE
added 2016/07/13 1:0 a.m.91 views

CVE-2016-4173

Technical details about CVE-2016-4173 are not provided in the supplied documents. No affected products, versions, or fixes are specified here. Monitor official disclosures for updates.

9.3CVSS9AI score0.0604EPSS
CVE
CVE
added 2016/07/13 1:0 a.m.91 views

CVE-2016-4177

Adobe Flash Player CVE-2016-4177 is an in-the-wild memory corruption/arbitrary code execution vulnerability. The CVE affects Windows and macOS builds prior to 18.0.0.366 and 19.x up to 22.x before 22.0.0.209, and Linux builds before 11.2.202.632, with vectors unspecified in the provided sources. ...

9.3CVSS8.9AI score0.17585EPSS
CVE
CVE
added 2016/09/14 6:0 p.m.91 views

CVE-2016-4283

Technical details for CVE-2016-4283 are not publicly provided in the provided documents. Monitor for updates.

9.3CVSS9.1AI score0.04434EPSS
CVE
CVE
added 2017/02/15 6:11 a.m.91 views

CVE-2017-2984

CVE-2017-2984 is a heap-based buffer overflow vulnerability in Adobe Flash Player’s h264 decoder present in version 24.0.0.194 and earlier. Exploitation could lead to arbitrary code execution. Public advisories indicate remediation by upgrading to Flash Player 24.0.0.221 or newer (e.g., Arch Linu...

9.3CVSS8.9AI score0.18219EPSS
CVE
CVE
added 2017/02/15 6:11 a.m.91 views

CVE-2017-2988

CVE-2017-2988 is a memory corruption vulnerability in Adobe Flash Player (vulnerable up to 24.0.0.194) triggered during garbage collection, potentially enabling arbitrary code execution. Root cause: memory corruption during GC with vectors that can be exploited remotely; attack vector is NETWORK ...

9.3CVSS8.9AI score0.18095EPSS
CVE
CVE
added 2016/03/12 3:0 p.m.90 views

CVE-2016-0988

Technical details for CVE-2016-0988 are not publicly provided in the connected documents above; no concrete affected versions, vulnerable components, or remediation are present. Monitor for updates.

9.3CVSS9AI score0.05079EPSS
CVE
CVE
added 2016/03/12 3:0 p.m.90 views

CVE-2016-1000

Technical details about CVE-2016-1000 are not publicly provided in the supplied documents; no vendor, affected products, or remediation details are present. Monitor for updates.

9.3CVSS9AI score0.29839EPSS
CVE
CVE
added 2016/03/12 3:0 p.m.90 views

CVE-2016-1005

CVE-2016-1005 affects Adobe Flash Player (Windows/OS X: before 21.0.0.182; Linux: before 11.2.202.577) and Adobe AIR/AIR SDK/SDK Compiler (before 21.0.0.176). The vulnerability allows attackers to execute arbitrary code or cause a denial of service via crafted MPEG-4 data due to an uninitialized ...

9.3CVSS8.9AI score0.0528EPSS
CVE
CVE
added 2016/06/16 2:0 p.m.90 views

CVE-2016-4141

CVE-2016-4141 is described as an unspecified vulnerability in Adobe Flash Player 21.0.0.242 and earlier, used in the Flash libraries for Microsoft Internet Explorer 10/11 and Microsoft Edge, with unknown impact and attack vectors. The connected documents provide concrete remediation activity: Mag...

9.3CVSS8.9AI score0.0381EPSS
CVE
CVE
added 2016/07/13 1:0 a.m.90 views

CVE-2016-4172

Technical details about CVE-2016-4172 are not publicly available in the provided connected documents. Monitor for official advisories for affected products, versions, and fixes.

9.3CVSS9.3AI score0.04339EPSS
CVE
CVE
added 2016/07/13 1:0 a.m.90 views

CVE-2016-4176

Adobe Flash Player has a memory corruption vulnerability (stack memory corruption) that could allow arbitrary code execution or a denial of service. Affected: Windows/macOS Flash Player before 18.0.0.366 and 19.x–22.x before 22.0.0.209; Linux before 11.2.202.632. Root cause/impact described in CV...

9.3CVSS8.9AI score0.17585EPSS
CVE
CVE
added 2016/09/14 6:0 p.m.90 views

CVE-2016-6921

Adobe Flash Player contains a use-after-free vulnerability rated HIGH, affecting Windows/OS X builds before 18.0.0.375 and 19.x–23.x before 23.0.0.162, and Linux before 11.2.202.635. The issue allows arbitrary code execution via unspecified vectors and is a separate vulnerability from CVE-2016-42...

9.3CVSS9AI score0.0604EPSS
CVE
CVE
added 2016/09/14 6:0 p.m.90 views

CVE-2016-6931

Technical details for CVE-2016-6931 are not publicly available in the provided documents. Monitor for updates.

9.3CVSS9AI score0.07383EPSS
CVE
CVE
added 2016/10/13 7:0 p.m.90 views

CVE-2016-6982

Technical details for CVE-2016-6982 are not present in the provided documents; connected EUVD and CNVD entries reference Flash but do not specify the affected component or root cause for this CVE. Monitor for updates.

9.3CVSS9AI score0.04957EPSS
CVE
CVE
added 2018/07/20 7:0 p.m.90 views

CVE-2018-5008

CVE-2018-5008 is an Adobe Flash Player out-of-bounds read vulnerability reported in Flash Player 30.0.0.113 and earlier. Connected sources confirm it enables information disclosure and is part of APSB18-24 alongside CVE-2018-5007 (arbitrary code execution). Public details specify affected compone...

7.5CVSS7.4AI score0.0676EPSS
CVE
CVE
added 2016/02/10 8:0 p.m.89 views

CVE-2016-0964

Technical details about CVE-2016-0964 are not publicly available in the provided connected documents; monitor for updates.

9.3CVSS9.2AI score0.20595EPSS
CVE
CVE
added 2016/02/10 8:0 p.m.89 views

CVE-2016-0970

The CVE-2016-0970 entry concerns multiple Adobe products: Flash Player prior to 18.0.0.329 (and 19.x prior to 20.0.0.306 on Windows/OS X; prior to 11.2.202.569 on Linux) and Adobe AIR prior to 20.0.0.260 (including AIR SDK before 20.0.0.260 and AIR SDK & Compiler before 20.0.0.260). It describes ...

9.3CVSS9.2AI score0.03783EPSS
CVE
CVE
added 2016/06/16 2:0 p.m.89 views

CVE-2016-4151

CVE-2016-4151 is described as an unspecified memory-corruption vulnerability in Adobe Flash Player 21.0.0.242 and earlier, affecting the Flash library components used by Internet Explorer 10/11 and Microsoft Edge. The connected documents attribute the issue to ShimContentFactory.retrieveResolvers...

9.3CVSS8.9AI score0.04387EPSS
CVE
CVE
added 2016/06/16 2:0 p.m.89 views

CVE-2016-4154

CVE-2016-4154 is a memory-corruption vulnerability in Adobe Flash Player (used in Flash libraries in IE11/Edge) linked to ShimContentResolver.resolve() with resolverType=0. Root cause: improper validation leading to a memory crash, enabling potential arbitrary code execution. Affected: Adobe Flas...

9.3CVSS8.9AI score0.04387EPSS
CVE
CVE
added 2016/09/14 6:0 p.m.89 views

CVE-2016-4282

Technical details for CVE-2016-4282 are not publicly available in the provided documents. Monitor for updates.

9.3CVSS9.1AI score0.04434EPSS
CVE
CVE
added 2016/09/14 6:0 p.m.89 views

CVE-2016-6923

Technical details for CVE-2016-6923 are not provided in the connected documents. No affected products, versions, impact, or fixes are disclosed here. Monitor for updates.

9.3CVSS9AI score0.0604EPSS
CVE
CVE
added 2016/09/14 6:0 p.m.89 views

CVE-2016-6932

Technical details about CVE-2016-6932 are not publicly available in the provided documents. Monitor for updates.

9.3CVSS9AI score0.0604EPSS
CVE
CVE
added 2016/10/13 7:0 p.m.89 views

CVE-2016-6981

CVE-2016-6981 is a use-after-free vulnerability in Adobe Flash Player affecting Windows, OS X, and Linux prior to the stated fixed versions. The vulnerability could allow arbitrary code execution via unspecified vectors and is described as a remote code execution issue. Public notes in connected ...

9.3CVSS8.9AI score0.0543EPSS
CVE
CVE
added 2016/12/15 6:31 a.m.89 views

CVE-2016-7890

CVE-2016-7890 affects Adobe Flash Player versions 23.0.0.207 and earlier, and 11.2.202.644 and earlier, describing a security bypass in the implementation of the same-origin policy. Connected advisories show this CVE being addressed in various Linux package updates: e.g., openSUSE openSUSE-2016-1...

8.8CVSS8.5AI score0.04628EPSS
CVE
CVE
added 2017/02/15 6:11 a.m.89 views

CVE-2017-2996

CVE-2017-2996 affects Adobe Flash Player (and Primetime SDK integration) with a memory corruption vulnerability in Flash Player versions 24.0.0.194 and earlier. The issue can lead to arbitrary code execution on a remote system when processing crafted SWF content. The connected advisories confirm ...

9.3CVSS8.9AI score0.04868EPSS
CVE
CVE
added 2017/03/14 4:0 p.m.89 views

CVE-2017-2998

CVE-2017-2998 is a memory corruption vulnerability in Adobe Flash Player ≤ 24.0.0.221, specifically in the Primetime TVSDK API functionality related to timeline interactions that could enable arbitrary code execution. Public postings in multiple advisories confirm a remote, user-triggered risk wi...

9.3CVSS8.9AI score0.04066EPSS
CVE
CVE
added 2017/07/14 5:0 a.m.89 views

CVE-2017-3100

Adobe Flash Player prior to version 26.0.0.137 contains CVE-2017-3100, a memory corruption vulnerability in the Action Script 2 BitmapData class that could lead to memory address disclosure. Several connected advisories confirm this CVE is among a set of vulnerabilities fixed by upgrading to 26.0...

6.5CVSS7.2AI score0.03748EPSS
CVE
CVE
added 2014/10/15 10:0 a.m.88 views

CVE-2014-0564

CVE-2014-0564 affects Adobe Flash Player before 13.0.0.250, 14.x before 15.0.0.189 on Windows/macOS and before 11.2.202.411 on Linux, as well as Adobe AIR before 15.0.0.293 and related AIR SDKs, allowing arbitrary code execution or memory corruption via unspecified vectors (distinct from CVE-2014...

10CVSS7.7AI score0.06192EPSS
CVE
CVE
added 2016/06/16 2:0 p.m.88 views

CVE-2016-4134

CVE-2016-4134 is an Adobe Flash Player vulnerability that was addressed as part of the APSB16-18 bulletin. Several connected advisories indicate the fix was delivered by upgrading Flash Player to 11.2.202.626 (e.g., SUSE/openSUSE updates, ALT Linux packages, and Red Hat advisories). The provided ...

9.3CVSS8.9AI score0.0381EPSS
CVE
CVE
added 2016/06/16 2:0 p.m.88 views

CVE-2016-4142

CVE-2016-4142 is a use-after-free vulnerability in Adobe Flash Player (as used in Flash libraries for Internet Explorer 10/11 and Microsoft Edge) that can lead to remote code execution via specially crafted SWF content. The initial entry notes Flash Player 21.0.0.242 and earlier as affected. Conn...

9.3CVSS8.9AI score0.0381EPSS
CVE
CVE
added 2016/06/16 2:0 p.m.88 views

CVE-2016-4146

CVE-2016-4146 is a Flash Player vulnerability affecting Adobe Flash Player in the browser plugins used by IE/Edge, with a focus on memory corruption/use-after-free conditions that could lead to arbitrary code execution. Public advisories (e.g., Mageia and ALT Linux) group it with other CVEs (4122...

9.3CVSS8.9AI score0.0381EPSS
CVE
CVE
added 2016/06/16 2:0 p.m.88 views

CVE-2016-4148

CVE-2016-4148 is part of a family of Flash Player vulnerabilities fixed in 2016 across multiple advisories. Connected records confirm multiple CVEs (including 4148) with a range of memory corruption issues (use-after-free, heap overflows, type confusion, information disclosure) that could lead to...

9.3CVSS8.9AI score0.0381EPSS
CVE
CVE
added 2016/07/13 1:0 a.m.88 views

CVE-2016-4226

CVE-2016-4226 is a use-after-free vulnerability in Adobe Flash Player that affects Windows/OS X and Linux builds prior to the patched versions listed in the entry: before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows/OS X, and before 11.2.202.632 on Linux. The issue allows arbitra...

9.3CVSS9AI score0.33134EPSS
CVE
CVE
added 2016/09/14 6:0 p.m.88 views

CVE-2016-4275

Technical details for CVE-2016-4275 are not publicly provided in the supplied documents. Monitor official advisories for updates; EUVD entries reference malware but do not describe exploit vectors or affected products.

9.3CVSS9.1AI score0.19443EPSS
CVE
CVE
added 2016/09/14 6:0 p.m.88 views

CVE-2016-4278

Technical details for CVE-2016-4278 are not publicly available in the provided documents. Monitor for updates from official advisories and affected vendors.

6.5CVSS7.1AI score0.04057EPSS
CVE
CVE
added 2016/09/14 6:0 p.m.88 views

CVE-2016-6922

Technical details for CVE-2016-6922 are not publicly available in the provided connected documents. Monitor the EUVD entries and other sources for updates; no specific affected products, impact, or remediation are provided here.

9.3CVSS9.1AI score0.04434EPSS
CVE
CVE
added 2017/02/15 6:11 a.m.88 views

CVE-2017-2987

CVE-2017-2987 affects Adobe Flash Player up to version 24.0.0.194, with an exploitable integer overflow in the Flash Broker COM component that can lead to arbitrary code execution. Public advisories and Nessus/Gentoo/SUSE entries corroborate widespread remediation, typically by upgrading Flash Pl...

9.3CVSS8.8AI score0.08526EPSS
CVE
CVE
added 2016/06/16 2:0 p.m.87 views

CVE-2016-4121

Adobe Flash Player contains a use-after-free vulnerability (CVE-2016-4121) affecting Windows and OS X up to 18.0.0.352, and 19.x–21.x up to 21.0.0.242, and Linux up to 11.2.202.621. The issue allows an attacker to execute arbitrary code via unspecified vectors. Affected versions include Flash Pla...

9.8CVSS8AI score0.10004EPSS
CVE
CVE
added 2016/06/16 2:0 p.m.87 views

CVE-2016-4123

CVE-2016-4123 is part of the Adobe Flash Player vulnerabilities addressed in the APSB16-18 update. The connected sources show multiple Linux distribution advisories (openSUSE, SUSE, Alt Linux, Arch Linux) referencing CVE-2016-4123 among others and noting a security fix via Flash Player update to ...

9.3CVSS8.9AI score0.0381EPSS
CVE
CVE
added 2016/07/13 1:0 a.m.87 views

CVE-2016-4188

Technical details for CVE-2016-4188 are not publicly available in the provided documents; the connected EUVD entries mention malware in sbrugna but do not describe affected products, versions, or root cause.

9.3CVSS9.3AI score0.04934EPSS
CVE
CVE
added 2016/12/15 6:31 a.m.87 views

CVE-2016-7877

CVE-2016-7877 is a use-after-free vulnerability in Adobe Flash Player AFM0 serialization affecting Flash Player 23.0.0.207 and earlier (Linux 11.2.202.644 and earlier). Exploitation could lead to arbitrary code execution. Connected advisories indicate fixes in Flash Player 24.x, e.g., 24.0.0.186 ...

9.3CVSS8.8AI score0.05882EPSS
CVE
CVE
added 2016/12/15 6:31 a.m.87 views

CVE-2016-7879

CVE-2016-7879 affects Adobe Flash Player prior to 24.0.0.186 (Windows/Linux/macOS). It is an exploitable use-after-free in the NetConnection class when handling an attached script object, enabling arbitrary code execution. Affected versions include 23.0.0.207 and earlier, and 11.2.202.644 and ear...

8.8CVSS8.8AI score0.07679EPSS
Total number of security vulnerabilities294