Flash Player Security Vulnerabilities and Issues — Page 4 of Flash Player CVE List

CVE-2015-8047

Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allow attackers to execute arbitrary code or cause a denial of ...

CVE-2015-8405

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allows attackers to execute arb...

10CVSS9AI score0.08757EPSS

CVE-2015-8407

Stack-based buffer overflow in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allows attackers to execute arbi...

CVE-2015-8411

CVE-2015-8416

CVE-2015-8422

CVE-2015-8435

9.3CVSS9AI score0.60453EPSS

CVE-2015-8437

Use-after-free vulnerability in the Selection object implementation in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20....

CVE-2015-8441

9.3CVSS8.8AI score0.06287EPSS

CVE-2015-8445

Integer overflow in the Shader filter implementation in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allows ...

9.3CVSS9AI score0.60453EPSS

CVE-2015-8449

Use-after-free vulnerability in the MovieClip object implementation in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20....

CVE-2015-8452

CVE•added 2015/12/28 11:59 p.m.•67 views

CVE-2015-8642

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.324 and 19.x and 20.x before 20.0.0.267 on Windows and OS X and before 11.2.202.559 on Linux, Adobe AIR before 20.0.0.233, Adobe AIR SDK before 20.0.0.233, and Adobe AIR SDK & Compiler before 20.0.0.233 allows attackers to execute arb...

9.3CVSS9.1AI score0.49456EPSS

CVE•added 2015/02/06 12:59 a.m.•66 views

CVE-2015-0326

Adobe Flash Player before 13.0.0.269 and 14.x through 16.x before 16.0.0.305 on Windows and OS X and before 11.2.202.442 on Linux allows attackers to cause a denial of service (NULL pointer dereference) or possibly have unspecified other impact via unknown vectors, a different vulnerability than CV...

10CVSS7.1AI score0.08682EPSS

CVE•added 2015/02/06 12:59 a.m.•66 views

CVE-2015-0329

Adobe Flash Player before 13.0.0.269 and 14.x through 16.x before 16.0.0.305 on Windows and OS X and before 11.2.202.442 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2015-0314, CVE-20...

10CVSS7.7AI score0.89185EPSS

CVE•added 2015/03/13 5:59 p.m.•66 views

CVE-2015-0342

Use-after-free vulnerability in Adobe Flash Player before 13.0.0.277 and 14.x through 17.x before 17.0.0.134 on Windows and OS X and before 11.2.202.451 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2015-0341.

10CVSS9.6AI score0.05186EPSS

CVE•added 2015/05/13 11:0 a.m.•66 views

CVE-2015-3084

Adobe Flash Player before 13.0.0.289 and 14.x through 17.x before 17.0.0.188 on Windows and OS X and before 11.2.202.460 on Linux, Adobe AIR before 17.0.0.172, Adobe AIR SDK before 17.0.0.172, and Adobe AIR SDK & Compiler before 17.0.0.172 allow attackers to execute arbitrary code by leveraging an ...

10CVSS7.3AI score0.63195EPSS

CVE•added 2015/05/13 11:0 a.m.•66 views

CVE-2015-3087

Integer overflow in Adobe Flash Player before 13.0.0.289 and 14.x through 17.x before 17.0.0.188 on Windows and OS X and before 11.2.202.460 on Linux, Adobe AIR before 17.0.0.172, Adobe AIR SDK before 17.0.0.172, and Adobe AIR SDK & Compiler before 17.0.0.172 allows attackers to execute arbitrary c...

10CVSS7.7AI score0.68055EPSS

CVE•added 2015/05/13 11:0 a.m.•66 views

CVE-2015-3091

Adobe Flash Player before 13.0.0.289 and 14.x through 17.x before 17.0.0.188 on Windows and OS X and before 11.2.202.460 on Linux, Adobe AIR before 17.0.0.172, Adobe AIR SDK before 17.0.0.172, and Adobe AIR SDK & Compiler before 17.0.0.172 do not properly restrict discovery of memory addresses, whi...

5CVSS6.3AI score0.00755EPSS

CVE•added 2015/07/09 4:59 p.m.•66 views

CVE-2015-3126

Adobe Flash Player before 13.0.0.302 and 14.x through 18.x before 18.0.0.203 on Windows and OS X and before 11.2.202.481 on Linux, Adobe AIR before 18.0.0.180, Adobe AIR SDK before 18.0.0.180, and Adobe AIR SDK & Compiler before 18.0.0.180 allow attackers to cause a denial of service (NULL pointer ...

7.5CVSS7.2AI score0.03219EPSS

CVE•added 2015/07/09 4:59 p.m.•66 views

CVE-2015-4430

10CVSS7.5AI score0.68245EPSS

CVE•added 2015/08/14 1:59 a.m.•66 views

CVE-2015-5554

Adobe Flash Player before 18.0.0.232 on Windows and OS X and before 11.2.202.508 on Linux, Adobe AIR before 18.0.0.199, Adobe AIR SDK before 18.0.0.199, and Adobe AIR SDK & Compiler before 18.0.0.199 allow attackers to execute arbitrary code by leveraging an unspecified "type confusion," a differen...

10CVSS7.3AI score0.65898EPSS

CVE•added 2015/09/22 10:59 a.m.•66 views

CVE-2015-5570

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.241 and 19.x before 19.0.0.185 on Windows and OS X and before 11.2.202.521 on Linux, Adobe AIR before 19.0.0.190, Adobe AIR SDK before 19.0.0.190, and Adobe AIR SDK & Compiler before 19.0.0.190 allows attackers to execute arbitrary co...

10CVSS7.5AI score0.71007EPSS

CVE•added 2015/10/18 10:59 a.m.•66 views

CVE-2015-7647

Adobe Flash Player before 18.0.0.255 and 19.x before 19.0.0.226 on Windows and OS X and before 11.2.202.540 on Linux allows attackers to execute arbitrary code by leveraging an unspecified "type confusion," a different vulnerability than CVE-2015-7648.

10CVSS7.5AI score0.64655EPSS

CVE-2015-8403

CVE-2015-8410

CVE-2015-8413

CVE-2015-8419

CVE-2015-8433

CVE•added 2015/12/10 6:0 a.m.•66 views

CVE-2015-8447

Use-after-free vulnerability in the Color object implementation in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0....

9.3CVSS9.1AI score0.60453EPSS

CVE•added 2015/12/28 11:59 p.m.•66 views

CVE-2015-8635

9.3CVSS9.1AI score0.49456EPSS

CVE•added 2015/01/13 11:59 p.m.•65 views

CVE-2015-0301

Adobe Flash Player before 13.0.0.260 and 14.x through 16.x before 16.0.0.257 on Windows and OS X and before 11.2.202.429 on Linux, Adobe AIR before 16.0.0.245 on Windows and OS X and before 16.0.0.272 on Android, Adobe AIR SDK before 16.0.0.272, and Adobe AIR SDK & Compiler before 16.0.0.272 do not...

10CVSS6.3AI score0.074EPSS

CVE•added 2015/01/13 11:59 p.m.•65 views

CVE-2015-0307

8.5CVSS6.5AI score0.06461EPSS

CVE•added 2015/02/06 12:59 a.m.•65 views

CVE-2015-0319

Adobe Flash Player before 13.0.0.269 and 14.x through 16.x before 16.0.0.305 on Windows and OS X and before 11.2.202.442 on Linux allows attackers to execute arbitrary code by leveraging an unspecified "type confusion," a different vulnerability than CVE-2015-0317.

10CVSS7.4AI score0.08751EPSS

CVE•added 2015/05/13 11:0 a.m.•65 views

CVE-2015-3082

Adobe Flash Player before 13.0.0.289 and 14.x through 17.x before 17.0.0.188 on Windows and OS X and before 11.2.202.460 on Linux, Adobe AIR before 17.0.0.172, Adobe AIR SDK before 17.0.0.172, and Adobe AIR SDK & Compiler before 17.0.0.172 allow remote attackers to bypass intended restrictions on f...

6.4CVSS6.6AI score0.22506EPSS

CVE•added 2015/06/10 1:59 a.m.•65 views

CVE-2015-3096

6.8CVSS6.5AI score0.00423EPSS

CVE•added 2015/07/09 4:59 p.m.•65 views

CVE-2015-3117

10CVSS7.7AI score0.65297EPSS

CVE•added 2015/07/09 4:59 p.m.•65 views

CVE-2015-3127

10CVSS7.5AI score0.68245EPSS

CVE•added 2015/08/14 1:59 a.m.•65 views

CVE-2015-5540

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.232 on Windows and OS X and before 11.2.202.508 on Linux, Adobe AIR before 18.0.0.199, Adobe AIR SDK before 18.0.0.199, and Adobe AIR SDK & Compiler before 18.0.0.199 allows attackers to execute arbitrary code via unspecified vectors,...

10CVSS7.7AI score0.65898EPSS

CVE•added 2015/08/14 1:59 a.m.•65 views

CVE-2015-5548

Adobe Flash Player before 18.0.0.232 on Windows and OS X and before 11.2.202.508 on Linux, Adobe AIR before 18.0.0.199, Adobe AIR SDK before 18.0.0.199, and Adobe AIR SDK & Compiler before 18.0.0.199 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unsp...

10CVSS7.7AI score0.52578EPSS

CVE•added 2015/10/14 11:59 p.m.•65 views

CVE-2015-7626

10CVSS7.7AI score0.20928EPSS

CVE•added 2015/12/10 5:59 a.m.•65 views

CVE-2015-8408

CVE•added 2015/12/10 5:59 a.m.•65 views

CVE-2015-8430