294 matches found
CVE-2016-7880
CVE-2016-7880 affects Adobe Flash Player up to version 23.0.0.207 / 11.2.202.644, where an exploitable use-after-free occurs when setting the length property of an array, potentially enabling arbitrary code execution. Connected advisories indicate fixes in Flash Player 24.x, e.g., 24.0.0.186 (and...
CVE-2018-5000
CVE-2018-5000 affects Adobe Flash Player up to version 30.0.0.113 (and earlier 29.0.0.171). The vulnerability is an integer overflow in Flash Player that could lead to information disclosure. Public advisories and vendor notes reference an update to 30.0.0.113 (or later) as the remediation. Sever...
CVE-2016-0961
Technical details for CVE-2016-0961 are not publicly available in the provided documents. Monitor for updates and further disclosures.
CVE-2016-0967
Technical details are not publicly available in the provided documents for CVE-2016-0967; connected EUVD entries only note malware in sbrugna without linking to specific root cause, affected products, or fixes. Monitor for updates.
CVE-2016-0972
CVE-2016-0972 affects Adobe Flash Player (Windows, OS X, Linux) prior to 18.0.0.329 and 19.x before 20.0.0.306, and Adobe AIR before 20.0.0.260 (and AIR SDK/Compiler before 20.0.0.260). The vulnerability allows attackers to execute arbitrary code or cause a denial of service (memory corruption) v...
CVE-2016-4136
CVE-2016-4136 is an Adobe Flash Player vulnerability affecting Flash libraries used in Microsoft Internet Explorer 10/11 and Edge. Connected sources describe it as a heap-based buffer overflow/memory corruption flaw that can lead to arbitrary code execution. Impact is described as code execution ...
CVE-2016-4174
No concrete technical details about CVE-2016-4174 are provided in the connected documents. The EUVD entries refer to malware in sbrugna but do not specify affected product/version/root cause for this CVE. Monitor for updates.
CVE-2016-4185
Technical details for CVE-2016-4185 are not publicly provided in the supplied documents. Monitor for updates as connected EUVD entries reference malware but do not reveal product/version/impact specifics here.
CVE-2016-4225
CVE-2016-4225 is described as a memory corruption vulnerability in Adobe Flash Player caused by an error while parsing a specially crafted SWF file. The issue was disclosed in APSB16-25 and is exploitable by a remote attacker who lures a user to open the crafted file. Affected products include Ad...
CVE-2016-4277
Adobe Flash Player vulnerable versions before 18.0.0.375 and 19.x up to 23.x before 23.0.0.162 on Windows/macOS, and before 11.2.202.635 on Linux, allow bypassing access restrictions to obtain sensitive information via unspecified vectors. Root cause not explicitly detailed in the provided docume...
CVE-2016-6925
Technical details for CVE-2016-6925 are not publicly provided in the connected documents. Monitor for updates.
CVE-2016-6983
Technical details about CVE-2016-6983 are not publicly provided in the supplied documents; no explicit affected products, versions, or fixes are described. Monitor for updates.
CVE-2016-6984
CVE-2016-6984 refers to memory corruption in Adobe Flash Player affecting multiple versions prior to 18.0.0.382 and 19.x up to 23.x before 23.0.0.185 on Windows/macOS, and Linux before 11.2.202.637. The vulnerability could allow arbitrary code execution or a denial of service via unspecified vect...
CVE-2016-6990
Technical details for CVE-2016-6990 are not provided in the connected documents. The available sources discuss malware activity generally and do not specify affected products, versions, root cause, or fixes. Monitor for updates.
CVE-2015-8654
Technical details about CVE-2015-8654 are not publicly available in the provided connected documents. No concrete information on affected products, versions, or fixes is present. Monitor for updates from official advisories.
CVE-2016-0991
A use-after-free vulnerability in Adobe Flash Player (before 18.0.0.333 and 19.x through 21.x before 21.0.0.182 on Windows/macOS; before 11.2.202.577 on Linux) and in Adobe AIR components enables arbitrary code execution via unspecified vectors. The entry CVE-2016-0991 also notes these are distin...
CVE-2016-1001
Adobe Flash Player and AIR (including AIR SDK variants) are affected by a heap-based buffer overflow (CVE-2016-1001) that could allow arbitrary code execution. Affected are Flash Player prior to 18.0.0.333 and 19.x–21.x prior to 21.0.0.182 on Windows/OS X, and prior to 11.2.202.577 on Linux; AIR ...
CVE-2016-4124
The CVE-2016-4124 entry refers to multiple vulnerabilities in Adobe Flash Player (11.x era) affecting the Flash runtime used by browsers (e.g., in Internet Explorer and Edge) with various CVEs listed in the 2016-4122…4171 range. Connected advisories show remediation via updates to Flash Player 11...
CVE-2016-4132
CVE-2016-4132 corresponds to an unspecified vulnerability in Adobe Flash Player 21.0.0.242 and earlier, used in the Flash libraries in IE10/IE11 and Edge, with unknown impact in the initial entry but later connected advisories list multiple memory corruption/code-execution related CVEs. Connected...
CVE-2016-4145
CVE-2016-4145 is tied to Adobe Flash Player used in Internet Explorer 10/11 and Edge. The connected sources show this CVE as part of a broader set of Flash vulnerabilities (CVE-2016-4122 through CVE-2016-4148) patched by Adobe in APSB16-18, with open-source advisories from SUSE/OpenSUSE and Red H...
CVE-2016-4276
Technical details for CVE-2016-4276 are not publicly available in the provided documents. Monitor for updates when connected sources (if any) publish specifics about affected products, vectors, impact, or remediation.
CVE-2017-2995
CVE-2017-2995 affects Adobe Flash Player (and corresponding flash plugin) prior to version 24.0.0.221. The vulnerability is a type confusion in the MessageChannel handling path, potentially allowing remote attackers to execute arbitrary code. Flash versions affected include 24.0.0.194 and earlier...
CVE-2018-4937
CVE-2018-4937 affects Adobe Flash Player prior to 29.0.0.140 (APSB18-08). The issue is an exploitable out-of-bounds write that could lead to arbitrary code execution in the context of the current user. Affected versions include 29.0.0.113 and earlier; remediation is upgrading to 29.0.0.140 or new...
CVE-2016-0965
Adobe Flash Player and Adobe AIR vulnerabilities (CVE-2016-0965) allow attackers to execute arbitrary code or cause memory corruption via unspecified vectors. Affected: Adobe Flash Player on Windows/macOS prior to 18.0.0.329 and 19.x/20.x prior to 20.0.0.306; Linux before 11.2.202.569. Affected A...
CVE-2016-0981
Technical details for CVE-2016-0981 are not publicly available in the provided documents. Monitor for updates from official sources.
CVE-2016-0994
The CVE-2016-0994 use-after-free in Adobe Flash Player (pre-18.0.0.333; 19.x–21.x pre-21.0.0.182 on Windows/macOS; pre-11.2.202.577 on Linux) and Adobe AIR pre-21.0.0.176 (SDKs/Compiler) allows arbitrary code execution via crafted arguments to actionCallMethod opcode. Affected components: Flash P...
CVE-2016-0996
Technical details for CVE-2016-0996 are not publicly provided in the supplied documents. Monitor for updates.
CVE-2016-0997
CVE-2016-0997 is a use-after-free vulnerability in Adobe Flash Player (Windows, OS X, Linux) and Adobe AIR/SDK/SDK & Compiler that can allow arbitrary code execution via unspecified vectors. Affected: Flash Player before 18.0.0.333 and 19.x up to 21.x before 21.0.0.182; Linux before 11.2.202.577;...
CVE-2016-0999
CVE-2016-0999 is a use-after-free in Adobe Flash Player (Windows/OS X: before 18.0.0.333 and 19.x up to 21.x before 21.0.0.182; Linux: before 11.2.202.577) and Adobe AIR before 21.0.0.176, enabling arbitrary code execution via unspecified vectors. A remote code execution bug tied to a crafted SWF...
CVE-2016-1014
CVE-2016-1014 affects Adobe Flash Player. It is an untrusted search path vulnerability that could let local users gain privileges via a Trojan horse resource in an unspecified directory. Affected products/versions include Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on W...
CVE-2016-4129
CVE-2016-4129 is part of Adobe Flash Player updates delivered via the 11.2.202.626 patch (APSb16-18) used in Flash libraries in browsers. The connected sources enumerate multiple vulnerabilities in Flash Player (CVE-2016-4122, -4123, -4124, -4125, -4127, -4128, -4129, -4130, -4131, -4132, -4133, ...
CVE-2016-4223
Adobe Flash Player contains a type confusion vulnerability (CVE-2016-4223) that could allow remote code execution. Affected versions include Flash Player before 18.0.0.366 and Windows/OS X 19.x up to 22.x before 22.0.0.209, as well as Linux before 11.2.202.632. The issue, described as a type conf...
CVE-2016-4224
CVE-2016-4224 affects Adobe Flash Player prior to 18.0.0.366 (Windows/OS X) and earlier 22.x versions before 22.0.0.209, and Linux before 11.2.202.632. Connected advisories describe a memory corruption issue in Flash Player when parsing a specially crafted SWF file, exploitable remotely by entici...
CVE-2016-7872
CVE-2016-7872 is an use-after-free vulnerability in Adobe Flash Player’s MovieClip handling that affects Flash Player 23.0.0.207 and earlier (Linux 11.2.202.644 and earlier). Successful exploitation could lead to arbitrary code execution. Public sources in connected documents consistently identif...
CVE-2016-0986
Technical details for CVE-2016-0986 are not publicly available in the provided connected documents; no concrete affected products, vulnerable components, or remediation specifics are present. Monitor for updates.
CVE-2016-1011
CVE-2016-1011 is a use-after-free vulnerability in Adobe Flash Player affecting the LoadVars.decode path. Affected are Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows/macOS, and before 11.2.202.616 on Linux. Successful exploitation could allow arbitrary code exec...
CVE-2016-1013
CVE-2016-1013 is a use-after-free vulnerability in Adobe Flash Player affecting Windows/macOS (before 18.0.0.343 and 19.x through 21.x before 21.0.0.213) and Linux (before 11.2.202.616) that allows arbitrary code execution via unspecified vectors. The entry notes this is a distinct issue from CVE...
CVE-2016-4130
CVE-2016-4130 is an Adobe Flash Player vulnerability referenced in multiple advisories (e.g., SUSE/openSUSE, Red Hat) as part of the 2016-06 APSB16-18 update. The affected component is Flash Player as embedded in browsers (e.g., IE/Edge/Flash plugins). Remediation in the connected documents shows...
CVE-2016-4140
CVE-2016-4140 is a directory search path vulnerability in the Adobe Flash Library used by Flash Player in Internet Explorer 10/11 and Microsoft Edge that could lead to arbitrary code execution. The issue affects Adobe Flash Player 21.0.0.242 and earlier (as used within IE/Edge). Publicly document...
CVE-2016-4227
Technical details about CVE-2016-4227 are not publicly provided in the supplied documents; no affected products, vectors, or fixes are disclosed here. Monitor for updates.
CVE-2016-4281
Technical details about CVE-2016-4281 are not provided in the supplied documents. Connected EUVD records mention malware “sbrugna” without vulnerability specifics. Monitor for updates from ENISA advisories and related sources.
CVE-2016-6924
Technical details for CVE-2016-6924 are not publicly available in the provided documents beyond listing the vulnerability and related CVEs; monitor for updates.
CVE-2016-7871
CVE-2016-7871 affects Adobe Flash Player (Windows/Linux) with memory corruption in the Worker class, exploitable to achieve arbitrary code execution. Vulnerable versions include 23.0.0.207 and earlier (and Linux 11.2.202.644 and earlier per sources). Affected product families include Flash Player...
CVE-2016-7875
CVE-2016-7875 affects Adobe Flash Player up to version 23.0.0.207 (Windows/Linux) and 11.2.202.644 (Flash Player). Root cause: an exploitable integer overflow in BitmapData. Impact: remote code execution could be achieved by a successful exploit. Public advisories show multiple related CVEs and p...
CVE-2016-1024
Technical details for CVE-2016-1024 are not provided in the connected documents. The initial CVE description lists a Flash vulnerability with unspecified vectors; no product/version/root cause/fix details are supplied here. Monitor for updates.
CVE-2016-1027
Technical details about CVE-2016-1027 are not publicly available in the provided connected documents. Monitor for updates from official advisories; this dataset does not specify affected products/versions, exploit information, or remediation specifics.
CVE-2016-4120
Technical details for CVE-2016-4120 are not provided in the connected documents; public information is not available here. Monitor for updates.
CVE-2016-4122
CVE-2016-4122 concerns Adobe Flash Player/Flash plugin. Connected advisories cite multiple vendors (openSUSE/SUSE, Red Hat, ALT Linux, arch linux) reporting this CVE along with related ones (4123–4129, 4130–4132, 4133–4137, 4138–4148, 4150–4171). The vulnerability set includes memory corruption, ...
CVE-2016-4128
CVE-2016-4128 is listed as part of the Adobe Flash Player fixes in the APSB16-18 update. The connected sources describe multiple CVEs addressed by this update and indicate that distributions such as openSUSE, SUSE, ALT Linux, and Red Hat released security updates to Flash Player, upgrading to ver...
CVE-2016-4144
CVE-2016-4144 is an Adobe Flash Player vulnerability described as a type confusion issue in Flash Player 21.0.0.242 and earlier, used within the Flash libraries in Microsoft Internet Explorer 10/11 and Microsoft Edge, with unspecified impact and attack vectors. Public advisories and security bull...