1084 matches found
CVE-2017-3003
CVE-2017-3003 is a use-after-free vulnerability in Adobe Flash Player
CVE-2017-3072
Adobe Flash Player vulnerability CVE-2017-3072 is described as an exploitable memory corruption in the BitmapData class in Flash Player 25.0.0.148 and earlier, with successful exploitation potentially leading to arbitrary code execution. The connected advisories corroborate multiple related CVEs ...
CVE-2009-0520
CVE-2009-0520 affects Adobe Flash Player 9.x prior to 9.0.159.0 and 10.x prior to 10.0.22.87. The issue arises when Flash processing SWF content fails to properly remove references to destroyed objects, enabling remote code execution via a crafted SWF file (buffer overflow-related). Public adviso...
CVE-2010-0186
CVE-2010-0186 is a cross-domain sandbox bypass vulnerability affecting Adobe Flash Player (before 10.0.45.2), Adobe AIR (before 1.5.3.9130), and Adobe Reader/Acrobat (8.x before 8.2.1 and 9.x before 9.3.1). The issue allows remote attackers to make cross-domain requests via unspecified vectors, w...
CVE-2013-0637
Adobe Flash Player and AIR contain a vulnerability (CVE-2013-0637) that could allow a remote attacker to obtain sensitive information via unspecified vectors. Affected affected software/versions include Flash Player on Windows (before 10.3.183.63) and Windows 11.x before 11.6.602.168, Mac OS X (b...
CVE-2014-0569
CVE-2014-0569 is an integer overflow vulnerability in Adobe Flash Player (and related AIR components) that could allow remote code execution. Affected products/versions (per initial entry) include Flash Player before 13.0.0.250 and 14.x before 15.0.0.189 on Windows/macOS and before 11.2.202.411 o...
CVE-2015-0330
CVE-2015-0330 corresponds to a memory-corruption/remote code execution issue in Adobe Flash Player. The connected Exploit-DB entry (36420) details an Adobe Flash Player PCRE Regex vulnerability that allows arbitrary code execution via the PCRE engine when handling a specific escape sequence with ...
CVE-2015-0331
Technical details for CVE-2015-0331 are not publicly available in the provided documents. Monitor for updates; the only explicit description is a use-after-free in Flash Player with unspecified vectors.
CVE-2015-3134
Technical details about CVE-2015-3134 (affected products, vulnerable components, impact, or fixes) are not publicly provided in the supplied documents. Monitor for updates.
CVE-2015-5582
Summary: CVE-2015-5582 affects Adobe Flash Player and Adobe AIR components. A memory corruption vulnerability in Flash Player allows remote code execution or denial of service via parsing crafted media (SWF/MP4) payloads, with exploitable conditions indicated by related advisories. Affected produ...
CVE-2015-7655
Technical details about CVE-2015-7655 are not publicly provided in the connected documents. The EUVD entries mention malware context, but no concrete product versions, root cause, impact, or remediation are detailed here; monitor for updates.
CVE-2015-8414
Technical details for CVE-2015-8414 are not publicly available in the provided connected documents. Monitor for updates.
CVE-2016-1102
CVE-2016-1102 is described as an unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Flash libraries in Internet Explorer 10/11 and Microsoft Edge, with unknown impact and attack vectors. It is noted as a different vulnerability than other CVEs listed in MS16-06...
CVE-2016-4149
CVE-2016-4149 is part of a set of vulnerabilities in Adobe Flash Player. Connected advisories note the issue alongside multiple other CVEs (notably in 4122–4149) and describe vulnerabilities in the Flash Player libraries used by Microsoft IE/Edge. Public updates from Mageia list CVE-2016-4149 as ...
CVE-2016-4175
Technical details for CVE-2016-4175 are not publicly available in the provided connected documents; no affected product/version/impact data is specified beyond the initial description. Monitor for updates.
CVE-2017-11215
CVE-2017-11215 is a use-after-free vulnerability in Adobe Flash Player (Primetime SDK) affecting Flash Player 27.0.0.183 and earlier. It can lead to arbitrary code execution through memory corruption and control-flow hijack. Public exploits exist for this vulnerability; malware has been observed ...
CVE-2017-3080
CVE-2017-3080 is a vulnerability in Adobe Flash Player (pre-26.0.0.137) that enables information disclosure and is tied to a security bypass in the Flash API used by Internet Explorer. Connected advisories and records confirm the issue affects Flash Player
CVE-2010-2160
Technical details about CVE-2010-2160 are not publicly available in the provided Connected documents. Monitor for updates in case additional specifics (affected product/version, root cause, impact, or fixes) are published.
CVE-2015-3104
CVE-2015-3104 is an integer overflow in Adobe Flash Player (Windows, macOS, Linux) and related Adobe AIR/SDK components. The flaw allows arbitrary code execution via unspecified vectors and affects Flash Player versions prior to 13.0.0.292, 14.x up to 18.x before 18.0.0.160 (Windows/macOS) and pr...
CVE-2015-3115
Technical details for CVE-2015-3115 are not provided in the connected documents; no specifics on affected products, impact, or fixes. Monitor for updates.
CVE-2015-8062
Technical details about CVE-2015-8062 are not publicly available in the provided documents. No affected product specifics, exploit information, or remediation are confirmed here. Monitor for updates.
CVE-2015-8648
CVE-2015-8648 is a use-after-free vulnerability in Adobe Flash Player and related Adobe AIR components. It affects Flash Player on Windows/OS X/Linux (pre-18.0.0.324, 19.x, and pre-20.0.0.267 on Windows/OS X; pre-11.2.202.559 on Linux) and Adobe AIR/AIR SDK before 20.0.0.233. The description note...
CVE-2016-4272
Technical details for CVE-2016-4272 are not publicly provided in the supplied documents. No vendor, product, version, impact, or remediation specifics are included here. Monitor for updates from official advisories and security feeds.
CVE-2016-7859
Adobe Flash Player versions 23.0.0.205 and earlier, and 11.2.202.643 and earlier, contain a use-after-free vulnerability that could allow remote arbitrary code execution. The issue affects Flash Player across major platforms and was addressed in updated builds: 23.0.0.207 (Flash Player 23.x) and ...
CVE-2017-11281
CVE-2017-11281 affects Adobe Flash Player before version 27.0.0.130 (impacting 26.0.0.151 and earlier). The vulnerability is a memory corruption issue in the text handling path that could allow remote code execution. Public exploit references exist (e.g., Exploit-DB entries) and various advisorie...
CVE-2017-2925
CVE-2017-2925 is an Adobe Flash Player memory corruption vulnerability in the JPEG XR codec affecting Flash Player 24.0.0.186 and earlier. Successful exploitation could enable arbitrary code execution on a remote host. The issue is one of multiple CVEs addressed in January 2017 Flash updates; mit...
CVE-2017-2927
CVE-2017-2927 affects Adobe Flash Player versions 24.0.0.186 and earlier, with an exploitable heap overflow when processing Adobe Texture Format files. Successful exploitation could lead to arbitrary code execution. The issue is confirmed in multiple advisories; a fix is available upstream in Fla...
CVE-2018-15983
CVE-2018-15983 affects Adobe Flash Player up to 31.0.0.153 (and 31.0.0.108 and earlier). The issue is insecure library loading (DLL hijacking) that could allow privilege escalation. Affected product: Flash Player on multiple platforms; root cause is DLL loading without proper verification in the ...
CVE-2009-0114
CVE-2009-0114 is an Adobe Flash Player vulnerability affecting Flash Player 9.x before 9.0.159.0 and 10.x before 10.0.22.87 (and possibly other versions). The issue is described as an unspecified vulnerability in the Settings Manager that could allow a remote attacker to trick a user into visitin...
CVE-2010-3642
Technical details about CVE-2010-3642 are not provided in the attached documents; no affected product/version or exploit information is disclosed. Monitor for updates from official advisories.
CVE-2010-3649
Technical details about CVE-2010-3649 are not provided in the supplied documents; monitor for updates.
CVE-2012-0751
CVE-2012-0751 concerns Adobe Flash Player ActiveX on Windows. The vulnerability exists in Flash Player versions before 10.3.183.15 and 11.x before 11.1.102.62 and can lead to arbitrary code execution or memory corruption via unspecified vectors. Mitigation provided by updating Flash Player to 11....
CVE-2015-5127
CVE-2015-5127 describes a use-after-free vulnerability in Adobe Flash Player prior to 18.0.0.232 (Windows/macOS) and prior to 11.2.202.508 (Linux), as well as in Adobe AIR prior to 18.0.0.199 (and related SDKs). It allows attackers to execute arbitrary code via unspecified vectors. The Initial do...
CVE-2015-5578
The provided documents confirm CVE-2015-5578 affects Adobe Flash Player before 18.0.0.241 and 19.x before 19.0.0.185 on Windows/OS X, and before 11.2.202.521 on Linux, as well as Adobe AIR before 19.0.0.190 (and AIR SDK/Compiler before 19.0.0.190). The connected advisories indicate the root cause...
CVE-2016-0969
Technical details about CVE-2016-0969 are not provided in the connected documents. Monitoring for updates is advised; no explicit affected products, versions, or fixes are stated in the supplied EUVD entries.
CVE-2016-1021
Technical details about CVE-2016-1021 are not publicly provided in the connected documents; monitor for updates.
CVE-2016-1097
CVE-2016-1097 is a use-after-free vulnerability in Adobe Flash Player (affecting 21.0.0.213 and earlier) that, per connected sources, could lead to arbitrary code execution. Affected platforms include Windows, OS X, and Linux before the indicated patched builds (e.g., Linux before 11.2.202.621 an...
CVE-2016-4152
CVE-2016-4152 is an unspecified vulnerability in Adobe Flash Player 21.0.0.242 and earlier used in Flash libraries for Internet Explorer 10/11 and Edge. Connected sources (HackerOne) map this to a ShimContentResolver.configure memory corruption issue in Flash Player, with patches issued by variou...
CVE-2017-2982
CVE-2017-2982: Adobe Flash Player contains a use-after-free vulnerability in a shutdown routine affecting version 24.0.0.194 and earlier; exploitation could lead to arbitrary code execution. Remediation is to upgrade to 24.0.0.221 (and related patched builds) as indicated by multiple advisories (...
CVE-2017-3000
CVE-2017-3000 affects Adobe Flash Player
CVE-2010-3640
Technical details (affected products/components, exploit vectors, impact, or fixes) are not publicly available in the provided connected documents. Monitor for updates from official advisories.
CVE-2010-3641
Technical details about CVE-2010-3641 are not publicly available in the provided documents. Monitor for updates from official advisories; no specific affected products, root cause, or remediation are disclosed here.
CVE-2011-2417
Technical details for CVE-2011-2417 are not publicly available in the provided documents. Monitor for updates; no concrete affected products, root cause, or remediation information is present in the connected sources.
CVE-2014-0492
CVE-2014-0492 affects Adobe Flash Player and Adobe AIR components. The issue stems from an “address leak” that defeats ASLR, impacting Flash Player prior to 11.7.700.260 and 11.8.x and 11.9.x before 12.0.0.38 on Windows/Mac, and prior to 11.2.202.335 on Linux, as well as Adobe AIR before 4.0.0.13...
CVE-2015-0339
Adobe Flash Player vulnerability CVE-2015-0339 is a memory corruption flaw in Flash Player triggered by parsing a specially crafted SWF file. Affects Windows and OS X builds: Flash Player before 13.0.0.277 and 14.x up to 17.x before 17.0.0.134, and Linux before 11.2.202.451. Exploitation can lead...
CVE-2015-0349
Technical details for CVE-2015-0349 are not publicly available in the provided documents. No affected products, versions, root cause, or fixes are documented here. Monitor for updates in connected sources.
CVE-2015-0357
CVE-2015-0357 is an Adobe Flash Player memory-discovery flaw that bypasses ASLR by improperly restricting memory address access. Affected are Windows/macOS: 13.0.0.281 and 14.x–17.x before 17.0.0.169; Linux: before 11.2.202.457. Root cause: insecure handling of memory addresses enabling ASLR bypa...
CVE-2015-3103
CVE-2015-3103 concerns Adobe Flash Player and is supported by connected sources that identify it as a race condition leading to a use-after-free. The issue affects Flash Player on Windows, OS X, and Linux, with the vulnerability triggered by a COM object initialization/deinitialization sequence t...
CVE-2015-3118
CVE-2015-3118 is a use-after-free vulnerability affecting Adobe Flash Player prior to 13.0.0.302 and 14.x up to 18.x before 18.0.0.203 on Windows and OS X, and before 11.2.202.481 on Linux, as well as Adobe AIR before 18.0.0.180 (including AIR SDK before/Compiler before 18.0.0.180). The issue per...
CVE-2015-8065
CVE-2015-8065 is a use-after-free vulnerability in Adobe Flash Player (before 18.0.0.268 and 19.x; before 20.0.0.228 on Windows/OS X; before 11.2.202.554 on Linux) and Adobe AIR (before 20.0.0.204) that permits arbitrary code execution via unspecified vectors. Affected products/versions are liste...