Flash Player Desktop Runtime Security Vulnerabilities and Issues — Page 5 of Flash Player Desktop Runtime CVE List

Lucene search

AdobeFlash Player Desktop Runtime

294 matches found

CVE•added 2016/12/15 6:59 a.m.•64 views

CVE-2016-7877

Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable use after free vulnerability in the Action Message Format serialization (AFM0). Successful exploitation could lead to arbitrary code execution.

9.3CVSS8.8AI score0.05085EPSS

CVE•added 2016/12/15 6:59 a.m.•64 views

CVE-2016-7881

Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable use after free vulnerability in the MovieClip class when handling conversion to an object. Successful exploitation could lead to arbitrary code execution.

9.3CVSS8.8AI score0.05085EPSS

CVE•added 2016/03/04 11:59 p.m.•63 views

CVE-2015-8654

Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allow attackers to execute arbitrary code or cause a denial of ...

9.3CVSS9AI score0.13403EPSS

CVE•added 2016/03/12 3:59 p.m.•63 views

CVE-2016-0989

Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21.0.0.182 on Windows and OS X and before 11.2.202.577 on Linux, Adobe AIR before 21.0.0.176, Adobe AIR SDK before 21.0.0.176, and Adobe AIR SDK & Compiler before 21.0.0.176 allow attackers to execute arbitrary code or cause a denial...

9.3CVSS9AI score0.53031EPSS

CVE•added 2016/03/12 3:59 p.m.•63 views

CVE-2016-0991

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21.0.0.182 on Windows and OS X and before 11.2.202.577 on Linux, Adobe AIR before 21.0.0.176, Adobe AIR SDK before 21.0.0.176, and Adobe AIR SDK & Compiler before 21.0.0.176 allows attackers to execute...

9.3CVSS9AI score0.50072EPSS

CVE•added 2016/03/12 3:59 p.m.•63 views

CVE-2016-1001

Heap-based buffer overflow in Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21.0.0.182 on Windows and OS X and before 11.2.202.577 on Linux, Adobe AIR before 21.0.0.176, Adobe AIR SDK before 21.0.0.176, and Adobe AIR SDK & Compiler before 21.0.0.176 allows attackers to execute a...

8.8CVSS9AI score0.48177EPSS

CVE•added 2016/04/09 1:59 a.m.•63 views

CVE-2016-1011

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-1013, CVE-2016-1016, CVE-2016...

9.3CVSS9.4AI score0.55399EPSS

CVE•added 2016/04/09 1:59 a.m.•63 views

CVE-2016-1014

Untrusted search path vulnerability in Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows local users to gain privileges via a Trojan horse resource in an unspecified directory.

7.3CVSS8AI score0.00215EPSS

CVE•added 2016/04/09 1:59 a.m.•63 views

CVE-2016-1032

Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-1012, CVE-20...

9.3CVSS9AI score0.05385EPSS

CVE•added 2016/06/16 2:59 p.m.•63 views

CVE-2016-4133

Unspecified vulnerability in Adobe Flash Player 21.0.0.242 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-083.

9.3CVSS8.9AI score0.03697EPSS

CVE•added 2016/07/13 1:59 a.m.•63 views

CVE-2016-4187

Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-4172, CVE-20...

9.3CVSS9.3AI score0.44744EPSS

CVE•added 2016/07/13 2:0 a.m.•63 views

CVE-2016-4228

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-4173, CVE-2016-4174, CVE-2016...

9.3CVSS9AI score0.73665EPSS

CVE•added 2016/10/13 7:59 p.m.•63 views

CVE-2016-4286

Adobe Flash Player before 18.0.0.382 and 19.x through 23.x before 23.0.0.185 on Windows and OS X and before 11.2.202.637 on Linux allows attackers to bypass intended access restrictions via unspecified vectors.

9.3CVSS8.4AI score0.02415EPSS

CVE•added 2016/12/15 6:59 a.m.•63 views

CVE-2016-7871

Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable memory corruption vulnerability in the Worker class. Successful exploitation could lead to arbitrary code execution.

8.8CVSS8.9AI score0.02856EPSS

CVE•added 2016/12/15 6:59 a.m.•63 views

CVE-2016-7872

Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable use after free vulnerability in the MovieClip class related to objects at multiple presentation levels. Successful exploitation could lead to arbitrary code execution.

8.8CVSS8.8AI score0.03325EPSS

CVE•added 2018/09/25 1:29 p.m.•63 views

CVE-2018-15967

Adobe Flash Player versions 30.0.0.154 and earlier have a privilege escalation vulnerability. Successful exploitation could lead to information disclosure.

7.5CVSS7.4AI score0.02888EPSS

CVE•added 2018/05/19 5:29 p.m.•63 views

CVE-2018-4919

Adobe Flash Player versions 28.0.0.161 and earlier have an exploitable use after free vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the current user.

9.3CVSS8.8AI score0.01474EPSS

CVE•added 2018/05/19 5:29 p.m.•63 views

CVE-2018-4920

Adobe Flash Player versions 28.0.0.161 and earlier have an exploitable type confusion vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the current user.

9.3CVSS8.8AI score0.04086EPSS

CVE•added 2018/05/19 5:29 p.m.•63 views

CVE-2018-4935

Adobe Flash Player versions 29.0.0.113 and earlier have an exploitable out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the current user.

9.3CVSS8.8AI score0.45213EPSS

CVE•added 2018/05/19 5:29 p.m.•63 views

CVE-2018-4936

Adobe Flash Player versions 29.0.0.113 and earlier have an exploitable Heap Overflow vulnerability. Successful exploitation could lead to information disclosure.

6.5CVSS6.8AI score0.23845EPSS

CVE•added 2016/02/10 8:59 p.m.•62 views

CVE-2016-0965

Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and before 11.2.202.569 on Linux, Adobe AIR before 20.0.0.260, Adobe AIR SDK before 20.0.0.260, and Adobe AIR SDK & Compiler before 20.0.0.260 allow attackers to execute arbitrary code or cause a denial of ...

9.3CVSS9.2AI score0.43246EPSS

CVE•added 2016/02/10 8:59 p.m.•62 views

CVE-2016-0966

9.3CVSS9.2AI score0.43246EPSS

CVE•added 2016/02/10 8:59 p.m.•62 views

CVE-2016-0971

Heap-based buffer overflow in Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and before 11.2.202.569 on Linux, Adobe AIR before 20.0.0.260, Adobe AIR SDK before 20.0.0.260, and Adobe AIR SDK & Compiler before 20.0.0.260 allows attackers to execute arbit...

9.3CVSS9AI score0.50058EPSS

CVE•added 2016/03/12 3:59 p.m.•62 views

CVE-2016-0986

9.3CVSS9AI score0.53031EPSS

CVE•added 2016/03/12 3:59 p.m.•62 views

CVE-2016-0992

9.3CVSS9AI score0.53031EPSS

CVE•added 2016/04/09 1:59 a.m.•62 views

CVE-2016-1026

9.3CVSS9AI score0.05385EPSS

CVE•added 2016/04/09 1:59 a.m.•62 views

CVE-2016-1029

9.3CVSS9AI score0.05385EPSS

CVE•added 2016/06/16 2:59 p.m.•62 views

CVE-2016-4131

9.3CVSS8.9AI score0.03697EPSS

CVE•added 2016/06/16 2:59 p.m.•62 views

CVE-2016-4147

9.3CVSS8.9AI score0.02182EPSS

CVE•added 2016/07/13 1:59 a.m.•62 views

CVE-2016-4183

9.3CVSS9.3AI score0.44744EPSS

CVE•added 2016/07/13 1:59 a.m.•62 views

CVE-2016-4186

9.3CVSS9.3AI score0.44744EPSS

CVE•added 2016/07/13 1:59 a.m.•62 views

CVE-2016-4190

9.3CVSS9.3AI score0.44744EPSS

CVE•added 2016/07/13 2:0 a.m.•62 views

CVE-2016-4218

9.3CVSS9.3AI score0.44744EPSS

CVE•added 2016/07/13 2:0 a.m.•62 views

CVE-2016-4237

9.3CVSS9.3AI score0.44744EPSS

CVE•added 2016/02/10 8:59 p.m.•61 views

CVE-2016-0970

9.3CVSS9.2AI score0.43246EPSS

CVE•added 2016/02/10 8:59 p.m.•61 views

CVE-2016-0978

9.3CVSS9.2AI score0.43246EPSS

CVE•added 2016/04/09 1:59 a.m.•61 views

CVE-2016-1020

9.3CVSS9AI score0.05385EPSS

CVE•added 2016/06/16 2:59 p.m.•61 views

CVE-2016-4139

9.3CVSS8.9AI score0.02182EPSS

CVE•added 2016/07/13 2:0 a.m.•61 views

CVE-2016-4220

9.3CVSS9.3AI score0.44744EPSS

CVE•added 2016/07/13 2:0 a.m.•61 views

CVE-2016-4241

9.3CVSS9.3AI score0.44744EPSS

CVE•added 2016/07/13 2:0 a.m.•61 views

CVE-2016-4245

9.3CVSS9.3AI score0.44744EPSS

CVE•added 2016/12/15 6:59 a.m.•61 views

CVE-2016-7868

Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable buffer overflow / underflow vulnerability in the RegExp class related to alternation functionality. Successful exploitation could lead to arbitrary code execution.

8.8CVSS8.9AI score0.01058EPSS

CVE•added 2016/12/15 6:59 a.m.•61 views

CVE-2016-7869

Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable buffer overflow / underflow vulnerability in the RegExp class related to backtrack search functionality. Successful exploitation could lead to arbitrary code execution.

8.8CVSS8.9AI score0.01058EPSS

CVE•added 2016/12/15 6:59 a.m.•61 views

CVE-2016-7874

Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable memory corruption vulnerability in the NetConnection class when handling the proxy types. Successful exploitation could lead to arbitrary code execution.

9.3CVSS8.8AI score0.03743EPSS

CVE•added 2016/03/12 3:59 p.m.•60 views

CVE-2016-0987

9.3CVSS9AI score0.50072EPSS

CVE•added 2016/04/09 1:59 a.m.•60 views

CVE-2016-1028

9.3CVSS9AI score0.05385EPSS

CVE•added 2016/04/09 1:59 a.m.•60 views

CVE-2016-1031

9.3CVSS9.4AI score0.55399EPSS

CVE•added 2016/06/16 2:59 p.m.•60 views

CVE-2016-4160

Adobe Flash Player before 18.0.0.352 and 19.x through 21.x before 21.0.0.242 on Windows and OS X and before 11.2.202.621 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-1096, CVE-20...

9.8CVSS8.2AI score0.28125EPSS

CVE•added 2016/07/13 2:0 a.m.•60 views

CVE-2016-4239

9.3CVSS9.3AI score0.44744EPSS

CVE•added 2016/12/15 6:59 a.m.•60 views

CVE-2016-7878

Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable use after free vulnerability in the PSDK's MediaPlayer class. Successful exploitation could lead to arbitrary code execution.

8.8CVSS8.8AI score0.03325EPSS

Total number of security vulnerabilities294