Flash Player Desktop Runtime Security Vulnerabilities and Issues — Page 4 of Flash Player Desktop Runtime CVE List

Lucene search

AdobeFlash Player Desktop Runtime

294 matches found

CVE•added 2016/07/13 2:0 a.m.•68 views

CVE-2016-4224

Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code by leveraging an unspecified "type confusion," a different vulnerability than CVE-2016-4223 and CVE-2016-4225.

8.8CVSS8.9AI score0.0593EPSS

CVE•added 2016/10/13 7:59 p.m.•68 views

CVE-2016-6983

Adobe Flash Player before 18.0.0.382 and 19.x through 23.x before 23.0.0.185 on Windows and OS X and before 11.2.202.637 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-4273, CVE-20...

9.3CVSS9AI score0.26758EPSS

CVE•added 2016/10/13 7:59 p.m.•68 views

CVE-2016-6984

9.3CVSS9AI score0.26758EPSS

CVE•added 2018/05/19 5:29 p.m.•68 views

CVE-2018-4932

Adobe Flash Player versions 29.0.0.113 and earlier have an exploitable Use-After-Free vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the current user.

9.3CVSS8.8AI score0.02312EPSS

CVE•added 2018/05/19 5:29 p.m.•68 views

CVE-2018-4937

Adobe Flash Player versions 29.0.0.113 and earlier have an exploitable out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the current user.

9.3CVSS8.8AI score0.45213EPSS

CVE•added 2016/03/12 3:59 p.m.•67 views

CVE-2016-0997

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21.0.0.182 on Windows and OS X and before 11.2.202.577 on Linux, Adobe AIR before 21.0.0.176, Adobe AIR SDK before 21.0.0.176, and Adobe AIR SDK & Compiler before 21.0.0.176 allows attackers to execute...

9.3CVSS9AI score0.50072EPSS

CVE•added 2016/03/12 3:59 p.m.•67 views

CVE-2016-0999

9.3CVSS9AI score0.50072EPSS

CVE•added 2016/06/16 2:59 p.m.•67 views

CVE-2016-4120

Adobe Flash Player before 18.0.0.352 and 19.x through 21.x before 21.0.0.242 on Windows and OS X and before 11.2.202.621 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-1096, CVE-20...

9.8CVSS8.2AI score0.28125EPSS

CVE•added 2016/07/13 1:59 a.m.•67 views

CVE-2016-4174

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-4173, CVE-2016-4222, CVE-2016...

9.3CVSS9AI score0.73665EPSS

CVE•added 2016/07/13 2:0 a.m.•67 views

CVE-2016-4225

8.8CVSS8.9AI score0.0593EPSS

CVE•added 2016/07/13 2:0 a.m.•67 views

CVE-2016-4248

9.3CVSS9AI score0.73665EPSS

CVE•added 2016/12/15 6:59 a.m.•67 views

CVE-2016-7890

Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have security bypass vulnerability in the implementation of the same origin policy.

8.8CVSS8.5AI score0.00475EPSS

CVE•added 2017/02/15 6:59 a.m.•67 views

CVE-2017-2995

Adobe Flash Player versions 24.0.0.194 and earlier have an exploitable type confusion vulnerability related to the MessageChannel class. Successful exploitation could lead to arbitrary code execution.

9.3CVSS8.7AI score0.0472EPSS

CVE•added 2016/03/12 3:59 p.m.•66 views

CVE-2016-0961

Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21.0.0.182 on Windows and OS X and before 11.2.202.577 on Linux, Adobe AIR before 21.0.0.176, Adobe AIR SDK before 21.0.0.176, and Adobe AIR SDK & Compiler before 21.0.0.176 allow attackers to execute arbitrary code or cause a denial...

9.3CVSS9AI score0.53031EPSS

CVE•added 2016/02/10 8:59 p.m.•66 views

CVE-2016-0969

Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and before 11.2.202.569 on Linux, Adobe AIR before 20.0.0.260, Adobe AIR SDK before 20.0.0.260, and Adobe AIR SDK & Compiler before 20.0.0.260 allow attackers to execute arbitrary code or cause a denial of ...

9.3CVSS9.2AI score0.43246EPSS

CVE•added 2016/04/09 1:59 a.m.•66 views

CVE-2016-1018

Stack-based buffer overflow in Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code via crafted JPEG-XR data.

9.3CVSS9.5AI score0.04918EPSS

CVE•added 2016/04/09 1:59 a.m.•66 views

CVE-2016-1024

Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-1012, CVE-20...

9.3CVSS9AI score0.05385EPSS

CVE•added 2016/06/16 2:59 p.m.•66 views

CVE-2016-4140

Unspecified vulnerability in Adobe Flash Player 21.0.0.242 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-083.

9.3CVSS8.9AI score0.02182EPSS

CVE•added 2016/06/16 2:59 p.m.•66 views

CVE-2016-4145

9.3CVSS8.9AI score0.02182EPSS

CVE•added 2016/07/13 2:0 a.m.•66 views

CVE-2016-4227

9.3CVSS9AI score0.73665EPSS

CVE•added 2016/09/14 6:59 p.m.•66 views

CVE-2016-4281

Adobe Flash Player before 18.0.0.375 and 19.x through 23.x before 23.0.0.162 on Windows and OS X and before 11.2.202.635 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-4274, CVE-20...

9.3CVSS9.1AI score0.26204EPSS

CVE•added 2016/10/13 7:59 p.m.•66 views

CVE-2016-6981

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.382 and 19.x through 23.x before 23.0.0.185 on Windows and OS X and before 11.2.202.637 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-6987.

9.3CVSS8.9AI score0.02869EPSS

CVE•added 2016/12/15 6:59 a.m.•66 views

CVE-2016-7879

Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable use after free vulnerability in the NetConnection class when handling an attached script object. Successful exploitation could lead to arbitrary code execution.

8.8CVSS8.8AI score0.03325EPSS

CVE•added 2016/12/15 6:59 a.m.•66 views

CVE-2016-7880

Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable use after free vulnerability when setting the length property of an array object. Successful exploitation could lead to arbitrary code execution.

9.3CVSS8.8AI score0.05085EPSS

CVE•added 2017/03/14 4:59 p.m.•66 views

CVE-2017-2998

Adobe Flash Player versions 24.0.0.221 and earlier have an exploitable memory corruption vulnerability in the Primetime TVSDK API functionality related to timeline interactions. Successful exploitation could lead to arbitrary code execution.

9.3CVSS8.9AI score0.01001EPSS

CVE•added 2016/02/10 8:59 p.m.•65 views

CVE-2016-0972

9.3CVSS9.2AI score0.43246EPSS

CVE•added 2016/02/10 8:59 p.m.•65 views

CVE-2016-0976

9.3CVSS9.2AI score0.43246EPSS

CVE•added 2016/02/10 8:59 p.m.•65 views

CVE-2016-0985

9.3CVSS8.9AI score0.5305EPSS

CVE•added 2016/03/12 3:59 p.m.•65 views

CVE-2016-0996

Use-after-free vulnerability in the setInterval method in Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21.0.0.182 on Windows and OS X and before 11.2.202.577 on Linux, Adobe AIR before 21.0.0.176, Adobe AIR SDK before 21.0.0.176, and Adobe AIR SDK & Compiler before 21.0.0.176 a...

9.3CVSS8.9AI score0.50072EPSS

CVE•added 2016/04/09 1:59 a.m.•65 views

CVE-2016-1013

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-1011, CVE-2016-1016, CVE-2016...

9.3CVSS9.4AI score0.55399EPSS

CVE•added 2016/04/09 1:59 a.m.•65 views

CVE-2016-1016

Use-after-free vulnerability in the Transform object implementation in Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code via a flash.geom.Matrix callback, a different vulnerabi...

9.3CVSS9.2AI score0.55399EPSS

CVE•added 2016/06/16 2:59 p.m.•65 views

CVE-2016-4124

9.3CVSS8.9AI score0.02194EPSS

CVE•added 2016/06/16 2:59 p.m.•65 views

CVE-2016-4128

9.3CVSS8.9AI score0.02182EPSS

CVE•added 2016/06/16 2:59 p.m.•65 views

CVE-2016-4130

9.3CVSS8.9AI score0.02182EPSS

CVE•added 2016/06/16 2:59 p.m.•65 views

CVE-2016-4143

9.3CVSS8.8AI score0.02182EPSS

CVE•added 2016/06/16 2:59 p.m.•65 views

CVE-2016-4144

9.3CVSS8.9AI score0.02182EPSS

CVE•added 2016/06/16 2:59 p.m.•65 views

CVE-2016-4161

9.8CVSS8.2AI score0.28125EPSS

CVE•added 2016/06/16 2:59 p.m.•65 views

CVE-2016-4162

9.8CVSS8.2AI score0.28125EPSS

CVE•added 2016/07/13 1:59 a.m.•65 views

CVE-2016-4181

Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-4172, CVE-20...

9.3CVSS9.3AI score0.44744EPSS

CVE•added 2016/09/14 6:59 p.m.•65 views

CVE-2016-4287

Integer overflow in Adobe Flash Player before 18.0.0.375 and 19.x through 23.x before 23.0.0.162 on Windows and OS X and before 11.2.202.635 on Linux allows attackers to execute arbitrary code via unspecified vectors.

9.3CVSS8.9AI score0.03508EPSS

CVE•added 2016/03/12 3:59 p.m.•64 views

CVE-2016-0994

9.3CVSS8.9AI score0.50072EPSS

CVE•added 2016/03/12 3:59 p.m.•64 views

CVE-2016-1002

9.3CVSS9AI score0.53031EPSS

CVE•added 2016/03/12 3:59 p.m.•64 views

CVE-2016-1005

9.3CVSS8.9AI score0.53031EPSS

CVE•added 2016/04/09 1:59 a.m.•64 views

CVE-2016-1017

Use-after-free vulnerability in the LoadVars.decode function in Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-20...

9.3CVSS9.4AI score0.55399EPSS

CVE•added 2016/06/16 2:59 p.m.•64 views

CVE-2016-4122

9.3CVSS8.9AI score0.02194EPSS

CVE•added 2016/06/16 2:59 p.m.•64 views

CVE-2016-4127

9.3CVSS8.9AI score0.02182EPSS

CVE•added 2016/06/16 2:59 p.m.•64 views

CVE-2016-4155

9.3CVSS8.9AI score0.03097EPSS

CVE•added 2016/07/13 2:0 a.m.•64 views

CVE-2016-4231

9.3CVSS9AI score0.73665EPSS

CVE•added 2016/07/13 2:0 a.m.•64 views

CVE-2016-4235

9.3CVSS9.3AI score0.44744EPSS

CVE•added 2016/12/15 6:59 a.m.•64 views

CVE-2016-7875

Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable integer overflow vulnerability in the BitmapData class. Successful exploitation could lead to arbitrary code execution.

8.8CVSS8.8AI score0.02856EPSS

Total number of security vulnerabilities294