Flash Player Security Vulnerabilities and Issues — Page 13 of Flash Player CVE List

Lucene search

AdobeFlash Player

1084 matches found

CVE•added 2010/06/15 6:0 p.m.•65 views

CVE-2010-2161

Array index error in Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, might allow attackers to execute arbitrary code via unspecified "types of Adobe Flash code."

9.3CVSS9.6AI score0.00668EPSS

CVE•added 2010/06/15 6:0 p.m.•65 views

CVE-2010-2172

Adobe Flash Player 9 before 9.0.277.0 on unspecified UNIX platforms allows attackers to cause a denial of service via unknown vectors.

4.3CVSS8.9AI score0.08266EPSS

CVE•added 2010/06/15 6:0 p.m.•65 views

CVE-2010-2185

Buffer overflow in Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, might allow attackers to execute arbitrary code via unspecified vectors.

9.3CVSS9.7AI score0.01093EPSS

CVE•added 2011/08/10 10:55 p.m.•65 views

CVE-2011-2136

Integer overflow in Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and Solaris and before 10.3.186.3 on Android, and Adobe AIR before 2.7.1 on Windows and Mac OS X and before 2.7.1.1961 on Android, allows attackers to execute arbitrary code via unspecified vectors, a different vu...

10CVSS9AI score0.04528EPSS

CVE•added 2011/08/10 10:55 p.m.•65 views

CVE-2011-2139

Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and Solaris and before 10.3.186.3 on Android, and Adobe AIR before 2.7.1 on Windows and Mac OS X and before 2.7.1.1961 on Android, allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via unspecif...

6.4CVSS8.3AI score0.02879EPSS

CVE•added 2011/11/11 4:55 p.m.•65 views

CVE-2011-2450

Adobe Flash Player before 10.3.183.11 and 11.x before 11.1.102.55 on Windows, Mac OS X, Linux, and Solaris and before 11.1.102.59 on Android, and Adobe AIR before 3.1.0.4880, allows attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via unspecified vectors.

10CVSS9.5AI score0.03037EPSS

CVE•added 2011/11/11 4:55 p.m.•65 views

CVE-2011-2460

10CVSS9.7AI score0.01769EPSS

CVE•added 2012/02/16 7:55 p.m.•65 views

CVE-2012-0755

Adobe Flash Player before 10.3.183.15 and 11.x before 11.1.102.62 on Windows, Mac OS X, Linux, and Solaris; before 11.1.111.6 on Android 2.x and 3.x; and before 11.1.115.6 on Android 4.x allows attackers to bypass intended access restrictions via unspecified vectors, a different vulnerability than ...

9.3CVSS6.3AI score0.05025EPSS

CVE•added 2012/10/09 11:13 a.m.•65 views

CVE-2012-5255

Buffer overflow in Adobe Flash Player before 10.3.183.29 and 11.x before 11.4.402.287 on Windows and Mac OS X, before 10.3.183.29 and 11.x before 11.2.202.243 on Linux, before 11.1.111.19 on Android 2.x and 3.x, and before 11.1.115.20 on Android 4.x; Adobe AIR before 3.4.0.2710; and Adobe AIR SDK b...

10CVSS7.9AI score0.06407EPSS

CVE•added 2014/05/14 11:13 a.m.•65 views

CVE-2014-0517

Adobe Flash Player before 13.0.0.214 on Windows and OS X and before 11.2.202.359 on Linux, Adobe AIR SDK before 13.0.0.111, and Adobe AIR SDK & Compiler before 13.0.0.111 allow attackers to bypass intended access restrictions via unspecified vectors, a different vulnerability than CVE-2014-0518, CV...

7.5CVSS6.4AI score0.02029EPSS

CVE•added 2014/11/11 11:55 p.m.•65 views

CVE-2014-0590

Adobe Flash Player before 13.0.0.252 and 14.x and 15.x before 15.0.0.223 on Windows and OS X and before 11.2.202.418 on Linux, Adobe AIR before 15.0.0.356, Adobe AIR SDK before 15.0.0.356, and Adobe AIR SDK & Compiler before 15.0.0.356 allow attackers to execute arbitrary code by leveraging an unsp...

10CVSS7.3AI score0.15077EPSS

CVE•added 2014/08/19 11:16 a.m.•65 views

CVE-2014-5333

Adobe Flash Player before 13.0.0.241 and 14.x before 14.0.0.176 on Windows and OS X and before 11.2.202.400 on Linux, Adobe AIR before 14.0.0.178 on Windows and OS X and before 14.0.0.179 on Android, Adobe AIR SDK before 14.0.0.178, and Adobe AIR SDK & Compiler before 14.0.0.178 do not properly res...

4.3CVSS6.7AI score0.35827EPSS

CVE•added 2014/12/10 9:59 p.m.•65 views

CVE-2014-9164

Adobe Flash Player before 13.0.0.259 and 14.x through 16.x before 16.0.0.235 on Windows and OS X and before 11.2.202.425 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-0587.

10CVSS7.7AI score0.10803EPSS

CVE•added 2015/01/13 11:59 p.m.•65 views

CVE-2015-0301

Adobe Flash Player before 13.0.0.260 and 14.x through 16.x before 16.0.0.257 on Windows and OS X and before 11.2.202.429 on Linux, Adobe AIR before 16.0.0.245 on Windows and OS X and before 16.0.0.272 on Android, Adobe AIR SDK before 16.0.0.272, and Adobe AIR SDK & Compiler before 16.0.0.272 do not...

10CVSS6.3AI score0.074EPSS

CVE•added 2015/01/13 11:59 p.m.•65 views

CVE-2015-0307

8.5CVSS6.5AI score0.06461EPSS

CVE•added 2015/02/06 12:59 a.m.•65 views

CVE-2015-0319

Adobe Flash Player before 13.0.0.269 and 14.x through 16.x before 16.0.0.305 on Windows and OS X and before 11.2.202.442 on Linux allows attackers to execute arbitrary code by leveraging an unspecified "type confusion," a different vulnerability than CVE-2015-0317.

10CVSS7.4AI score0.08751EPSS

CVE•added 2015/05/13 11:0 a.m.•65 views

CVE-2015-3082

Adobe Flash Player before 13.0.0.289 and 14.x through 17.x before 17.0.0.188 on Windows and OS X and before 11.2.202.460 on Linux, Adobe AIR before 17.0.0.172, Adobe AIR SDK before 17.0.0.172, and Adobe AIR SDK & Compiler before 17.0.0.172 allow remote attackers to bypass intended restrictions on f...

6.4CVSS6.6AI score0.22506EPSS

CVE•added 2015/06/10 1:59 a.m.•65 views

CVE-2015-3096

Adobe Flash Player before 13.0.0.292 and 14.x through 18.x before 18.0.0.160 on Windows and OS X and before 11.2.202.466 on Linux, Adobe AIR before 18.0.0.144 on Windows and before 18.0.0.143 on OS X and Android, Adobe AIR SDK before 18.0.0.144 on Windows and before 18.0.0.143 on OS X, and Adobe AI...

6.8CVSS6.5AI score0.00423EPSS

CVE•added 2015/07/09 4:59 p.m.•65 views

CVE-2015-3117

Adobe Flash Player before 13.0.0.302 and 14.x through 18.x before 18.0.0.203 on Windows and OS X and before 11.2.202.481 on Linux, Adobe AIR before 18.0.0.180, Adobe AIR SDK before 18.0.0.180, and Adobe AIR SDK & Compiler before 18.0.0.180 allow attackers to execute arbitrary code or cause a denial...

10CVSS7.7AI score0.65297EPSS

CVE•added 2015/07/09 4:59 p.m.•65 views

CVE-2015-3127

Use-after-free vulnerability in Adobe Flash Player before 13.0.0.302 and 14.x through 18.x before 18.0.0.203 on Windows and OS X and before 11.2.202.481 on Linux, Adobe AIR before 18.0.0.180, Adobe AIR SDK before 18.0.0.180, and Adobe AIR SDK & Compiler before 18.0.0.180 allows attackers to execute...

10CVSS7.5AI score0.68245EPSS

CVE•added 2015/08/14 1:59 a.m.•65 views

CVE-2015-5540

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.232 on Windows and OS X and before 11.2.202.508 on Linux, Adobe AIR before 18.0.0.199, Adobe AIR SDK before 18.0.0.199, and Adobe AIR SDK & Compiler before 18.0.0.199 allows attackers to execute arbitrary code via unspecified vectors,...

10CVSS7.7AI score0.65898EPSS

CVE•added 2015/08/14 1:59 a.m.•65 views

CVE-2015-5548

Adobe Flash Player before 18.0.0.232 on Windows and OS X and before 11.2.202.508 on Linux, Adobe AIR before 18.0.0.199, Adobe AIR SDK before 18.0.0.199, and Adobe AIR SDK & Compiler before 18.0.0.199 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unsp...

10CVSS7.7AI score0.52578EPSS

CVE•added 2015/10/14 11:59 p.m.•65 views

CVE-2015-7626

Adobe Flash Player before 18.0.0.252 and 19.x before 19.0.0.207 on Windows and OS X and before 11.2.202.535 on Linux, Adobe AIR before 19.0.0.213, Adobe AIR SDK before 19.0.0.213, and Adobe AIR SDK & Compiler before 19.0.0.213 allow attackers to execute arbitrary code or cause a denial of service (...

10CVSS7.7AI score0.20928EPSS

CVE•added 2015/12/10 5:59 a.m.•65 views

CVE-2015-8408

Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allow attackers to execute arbitrary code or cause a denial of ...

10CVSS9.1AI score0.13403EPSS

CVE•added 2015/12/10 5:59 a.m.•65 views

CVE-2015-8430

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allows attackers to execute arb...

10CVSS9.2AI score0.60453EPSS

CVE•added 2015/12/10 5:59 a.m.•65 views

CVE-2015-8432

10CVSS9.2AI score0.60453EPSS

CVE•added 2015/12/28 11:59 p.m.•65 views

CVE-2015-8645

Adobe Flash Player before 18.0.0.324 and 19.x and 20.x before 20.0.0.267 on Windows and OS X and before 11.2.202.559 on Linux, Adobe AIR before 20.0.0.233, Adobe AIR SDK before 20.0.0.233, and Adobe AIR SDK & Compiler before 20.0.0.233 allow attackers to execute arbitrary code or cause a denial of ...

9.3CVSS9.5AI score0.41991EPSS

CVE•added 2016/02/10 8:59 p.m.•65 views

CVE-2016-0972

Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and before 11.2.202.569 on Linux, Adobe AIR before 20.0.0.260, Adobe AIR SDK before 20.0.0.260, and Adobe AIR SDK & Compiler before 20.0.0.260 allow attackers to execute arbitrary code or cause a denial of ...

9.3CVSS9.2AI score0.43246EPSS

CVE•added 2016/02/10 8:59 p.m.•65 views

CVE-2016-0976

9.3CVSS9.2AI score0.43246EPSS

CVE•added 2016/02/10 8:59 p.m.•65 views

CVE-2016-0985

9.3CVSS8.9AI score0.5305EPSS

CVE•added 2016/03/12 3:59 p.m.•65 views

CVE-2016-0996

Use-after-free vulnerability in the setInterval method in Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21.0.0.182 on Windows and OS X and before 11.2.202.577 on Linux, Adobe AIR before 21.0.0.176, Adobe AIR SDK before 21.0.0.176, and Adobe AIR SDK & Compiler before 21.0.0.176 a...

9.3CVSS8.9AI score0.50072EPSS

CVE•added 2016/04/09 1:59 a.m.•65 views

CVE-2016-1013

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-1011, CVE-2016-1016, CVE-2016...

9.3CVSS9.4AI score0.55399EPSS

CVE•added 2016/04/09 1:59 a.m.•65 views

CVE-2016-1016

Use-after-free vulnerability in the Transform object implementation in Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code via a flash.geom.Matrix callback, a different vulnerabi...

9.3CVSS9.2AI score0.55399EPSS

CVE•added 2016/05/11 11:1 a.m.•65 views

CVE-2016-4109

Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-064.

7.6CVSS8.2AI score0.05238EPSS

CVE•added 2016/06/16 2:59 p.m.•65 views

CVE-2016-4124

Unspecified vulnerability in Adobe Flash Player 21.0.0.242 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-083.

9.3CVSS8.9AI score0.02194EPSS

CVE•added 2016/06/16 2:59 p.m.•65 views

CVE-2016-4128

9.3CVSS8.9AI score0.02182EPSS

CVE•added 2016/06/16 2:59 p.m.•65 views

CVE-2016-4130

9.3CVSS8.9AI score0.02182EPSS

CVE•added 2016/06/16 2:59 p.m.•65 views

CVE-2016-4143

9.3CVSS8.8AI score0.02182EPSS

CVE•added 2016/06/16 2:59 p.m.•65 views

CVE-2016-4144

9.3CVSS8.9AI score0.02182EPSS

CVE•added 2016/06/16 2:59 p.m.•65 views

CVE-2016-4161

Adobe Flash Player before 18.0.0.352 and 19.x through 21.x before 21.0.0.242 on Windows and OS X and before 11.2.202.621 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-1096, CVE-20...

9.8CVSS8.2AI score0.28125EPSS

CVE•added 2016/06/16 2:59 p.m.•65 views

CVE-2016-4162

9.8CVSS8.2AI score0.28125EPSS

CVE•added 2016/07/13 1:59 a.m.•65 views

CVE-2016-4181

Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-4172, CVE-20...

9.3CVSS9.3AI score0.44744EPSS

CVE•added 2016/09/14 6:59 p.m.•65 views

CVE-2016-4287

Integer overflow in Adobe Flash Player before 18.0.0.375 and 19.x through 23.x before 23.0.0.162 on Windows and OS X and before 11.2.202.635 on Linux allows attackers to execute arbitrary code via unspecified vectors.

9.3CVSS8.9AI score0.03508EPSS

CVE•added 2017/01/11 4:59 a.m.•65 views

CVE-2017-2925

Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable memory corruption vulnerability in the JPEG XR codec. Successful exploitation could lead to arbitrary code execution.

9.3CVSS8.9AI score0.01061EPSS

CVE•added 2017/06/20 5:29 p.m.•65 views

CVE-2017-3082

Adobe Flash Player versions 25.0.0.171 and earlier have an exploitable memory corruption vulnerability in the LocaleID class. Successful exploitation could lead to arbitrary code execution.

10CVSS9.4AI score0.03626EPSS

CVE•added 2008/01/04 12:46 a.m.•64 views

CVE-2007-6637

Multiple cross-site scripting (XSS) vulnerabilities in Adobe Flash Player allow remote attackers to inject arbitrary web script or HTML via a crafted SWF file, related to "pre-generated SWF files" and Adobe Dreamweaver CS3 or Adobe Acrobat Connect. NOTE: the asfunction: vector is already covered by...

4.3CVSS5.5AI score0.58426EPSS

CVE•added 2010/06/15 6:0 p.m.•64 views

CVE-2010-2176

Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-2160, CVE-2010-2165, CVE-2010-2166,...

9.3CVSS9.9AI score0.01631EPSS

CVE•added 2010/06/15 6:0 p.m.•64 views

CVE-2010-2180

9.3CVSS9.9AI score0.01631EPSS

CVE•added 2011/05/13 10:55 p.m.•64 views

CVE-2011-0618

Integer overflow in Adobe Flash Player before 10.3.181.14 on Windows, Mac OS X, Linux, and Solaris and before 10.3.185.21 on Android allows attackers to execute arbitrary code via unspecified vectors.

9.3CVSS8.8AI score0.06126EPSS

CVE•added 2011/05/13 10:55 p.m.•64 views

CVE-2011-0624

Adobe Flash Player before 10.3.181.14 on Windows, Mac OS X, Linux, and Solaris and before 10.3.185.21 on Android allows attackers to execute arbitrary code via unspecified vectors, related to a "bounds checking" issue, a different vulnerability than CVE-2011-0623, CVE-2011-0625, and CVE-2011-0626.

9.3CVSS8.7AI score0.04606EPSS

Total number of security vulnerabilities1084