1084 matches found
CVE-2016-4274
Technical details about CVE-2016-4274 are not publicly provided in the connected documents; monitor for updates from the original advisories and EUVD entries.
CVE-2016-4285
Technical details for CVE-2016-4285 (affected software, components, exploit vectors, impact) are not publicly provided in the connected documents; monitor official advisories for updates.
CVE-2016-6930
Technical details about CVE-2016-6930 are not publicly available in the provided documents. Monitor for updates from authoritative sources.
CVE-2016-6985
Adobe Flash Player CVE-2016-6985 is a memory corruption vulnerability affecting Windows/OS X and Linux builds (before 18.0.0.382; 19.x up to 23.x before 23.0.0.185 on Windows/macOS; before 11.2.202.637 on Linux) triggered by parsing of SWF content as described by the PSP and related advisories. T...
CVE-2016-7858
CVE-2016-7858 is a use-after-free vulnerability in Adobe Flash Player that could allow remote arbitrary code execution. Affected products include Flash Player 23.0.0.205 and earlier and 11.2.202.643 and earlier (Windows/other platforms), with exploitation possible via processing a crafted SWF fil...
CVE-2017-2926
CVE-2017-2926 affects Adobe Flash Player versions 24.0.0.186 and earlier, with an exploitable memory corruption in MP4 atom processing that could lead to arbitrary code execution. Connected advisories confirm the issue across multiple packages and architectures, recommending upgrade to Flash Play...
CVE-2008-4820
CVE-2008-4820 affects the Flash Player ActiveX control in Adobe Flash Player 9.0.124.0 and earlier on Windows, enabling information disclosure via unknown vectors. Connected sources indicate this issue was not fully resolved by a prior fix and that CVE-2009-3951 notes the vulnerability exists bec...
CVE-2010-3639
Adobe Flash Player (flash-plugin) contains multiple vulnerabilities tracked as CVE-2010-3639 and related 2010-36xx series. Public advisories (RHSA-2010-0829/0834/0867) indicate that updates fixed these flaws by upgrading Flash Player to version 10.1.102.64 (and earlier 9.0.289.0 in some releases)...
CVE-2010-3648
Technical details are not publicly available in the provided documents. Monitor for updates.
CVE-2010-3652
Technical details for CVE-2010-3652 are not publicly available in the provided documents. Connected EUVD entries mention malware labels but do not specify affected products, root cause, or remediation. Monitor for updates and additional disclosures.
CVE-2011-2425
Technical details for CVE-2011-2425 are not publicly provided in the supplied documents. Please monitor the connected sources for updates.
CVE-2011-2427
Adobe Flash Player AVM stack-based overflow (CVE-2011-2427) affects the ActionScript Virtual Machine in desktop platforms (Windows, macOS, Linux, Solaris) and Android prior to versions 10.3.183.10 (desktop) and 10.3.186.7 (Android). The vulnerability allows arbitrary code execution or a denial of...
CVE-2013-1367
Technical details about CVE-2013-1367 are not publicly available in the provided connected documents. Monitor for updates from ENISA EUVD entries and other sources.
CVE-2015-3090
CVE-2015-3090 affects Adobe Flash Player prior to 13.0.0.289 and 14.x–17.x prior to 17.0.0.188 on Windows/macOS, and prior to 11.2.202.460 on Linux, plus Adobe AIR/SDK before 17.0.0.172. Connected sources indicate a shader operation-based memory corruption (ShaderJob) vulnerability that can enabl...
CVE-2015-7657
Technical details for CVE-2015-7657 are not publicly available in the provided documents. No affected products, root cause, or remediation are disclosed here. Monitor for updates from official advisories.
CVE-2015-8417
Technical details about CVE-2015-8417 are not publicly available in the provided Connected documents; monitor for updates. The initial description lists affected Flash/AIR versions and general impact, but no concrete root-cause, exploit vectors, or fixes are disclosed here.
CVE-2016-4135
CVE-2016-4135 is one of multiple Flash Player vulnerabilities addressed in mid‑2016 advisories. Connected sources show this entry being treated as a memory corruption issue in Adobe Flash Player (Flash libraries in IE/Edge) that contributes to heap-based buffers overflow and arbitrary code execut...
CVE-2016-4150
CVE-2016-4150 is an unspecified memory corruption vulnerability in Adobe Flash Player 21.0.0.242 and earlier, reported in the Flash libraries used by IE/Edge. Connected sources confirm a ShimContentFactory.retrieveOpportunityGenerators() memory-corruption condition leading to potential memory cra...
CVE-2016-4182
Technical details for CVE-2016-4182 are not publicly provided in the supplied documents; only generic references and cross-links are available. Monitor for updates from official advisories.
CVE-2016-6927
Technical details for CVE-2016-6927 are not publicly available in the provided documents. Connected EUVD entries mention malware but do not describe the vulnerability. Monitor for updates.
CVE-2016-6929
Technical details about CVE-2016-6929 are not provided in the connected documents. The EUVD entries mention malware but do not specify affected products, impact, or remediation. Monitor for updates.
CVE-2017-3099
Adobe Flash Player
CVE-2017-3106
Adobe Flash Player
CVE-2017-3112
Summary: CVE-2017-3112 (and related CVEs) affect Adobe Flash Player up to 27.0.0.183 and earlier, with out-of-bounds reads in the AdobePSDK metadata and out-of-bounds/use-after-free conditions described as causing remote code execution or data exposure. Multiple connected advisories confirm these...
CVE-2018-4944
CVE-2018-4944 affects Adobe Flash Player: a type-confusion vulnerability in versions 29.0.0.140 and earlier that could allow arbitrary code execution in the current user context. Public advisories reference APSB18-16; mitigation is to upgrade to a non‑vulnerable version (e.g., 29.0.0.171 or newer...
CVE-2008-5361
Adobe Flash Player and Adobe AIR are affected by CVE-2008-5361. The vulnerability arises because the ActionScript 2 VM does not verify a member element’s size when performing DefineConstantPool, ActionJump, ActionPush, and ActionTry (and related actions), enabling a remote attacker to read sensit...
CVE-2010-0187
CVE-2010-0187 affects Adobe Flash Player before 10.0.45.2 and Adobe AIR before 1.5.3.9130, allowing remote attackers to cause an application crash (DoS) via a modified SWF file. Connected advisories indicate updates to Flash Player (e.g., upgrade to 10.0.45.2) mitigate the issue (RHSA-2010-0102; ...
CVE-2010-2187
Technical details for CVE-2010-2187 are not publicly available in the provided documents. Monitor for updates.
CVE-2010-3643
Technical details for CVE-2010-3643 are not publicly provided in the supplied Connected Documents. No concrete information on affected products, vulnerable components, impact, or remediation is available here; monitor for updates.
CVE-2010-3644
CVE-2010-3644 concerns an unspecified vulnerability in Adobe Flash Player prior to 9.0.289.0 and in the 10.x branch prior to 10.1.102.64 (Windows, macOS, Linux, Solaris) and 10.1.95.1 on Android. The flaw can allow execution of arbitrary code or a denial of service due to memory corruption, via u...
CVE-2010-3650
Technical details about CVE-2010-3650 are not publicly disclosed in the provided documents; monitor for updates from official advisories.
CVE-2010-3976
CVE-2010-3976 describes an untrusted search path and DLL hijacking flaw in Adobe Flash Player prior to 9.0.289.0 and 10.x prior to 10.1.102.64 on Windows. The vulnerability allows local users, and possibly remote attackers, to execute arbitrary code by placing a malicious dwmapi.dll in the same f...
CVE-2011-2453
Adobe Flash Player and Adobe AIR are affected by CVE-2011-2453. The initial description lists that Flash Player before 10.3.183.11 and 11.x before 11.1.102.55 on Windows, macOS, Linux, and Solaris, and before 11.1.102.59 on Android, as well as AIR before 3.1.0.4880, are vulnerable via unspecified...
CVE-2014-0506
Technical details about CVE-2014-0506 are not publicly provided in the supplied documents. The sources reference the vulnerability but do not include specifics on impact, affected products beyond Flash Player/AIR, or remediation. Monitor for updates.
CVE-2014-0508
CVE-2014-0508 affects Adobe Flash Player prior to 11.7.700.275 and 11.8.x prior to 13.0.0.182 on Windows/macOS, and prior to 11.2.202.350 on Linux; Adobe AIR prior to 13.0.0.83 (Android) and AIR SDK/SDK & Compiler prior to 13.0.0.83. The issue is described as bypassing intended access restriction...
CVE-2014-8440
CVE-2014-8440 is a memory‑corruption vulnerability in Adobe Flash Player’s ByteArray::UncompressViaZlibVariant that can lead to arbitrary code execution or crash via uninitialized memory. Affected products/versions (per initial description): Flash Player before 13.0.0.252 and 14.x and 15.x before...
CVE-2015-5545
Technical details for CVE-2015-5545 are not publicly provided in the connected documents. Monitor for updates to affected products, impact, and remediation.
CVE-2015-5580
CVE-2015-5580 corresponds to a memory corruption vulnerability in Adobe Flash Player and related AIR components, reported as APSB15-23. Affected products include Flash Player before 18.0.0.241 and 19.x before 19.0.0.185 on Windows/OS X, and before 11.2.202.521 on Linux, plus Adobe AIR before 19.0...
CVE-2015-7658
Technical details for CVE-2015-7658 are not provided in the connected documents. No affected products, versions, or fixes are specified here; monitor for updates.
CVE-2016-0995
Technical details for CVE-2016-0995 are not publicly provided in the supplied documents; no affected products, vectors, or remediation are specified here. Monitor for updates.
CVE-2016-1006
Adobe Flash Player vulnerability CVE-2016-1006 allows bypass of ASLR via JIT data. Affected products and versions (from the provided sources) include Windows and OS X Flash Player versions before 18.0.0.343 and 19.x up to 21.x before 21.0.0.213, and Linux Flash Player before 11.2.202.616. The roo...
CVE-2016-1012
Technical details about CVE-2016-1012 are not provided in the supplied documents. Monitor EUVD entries for updates; no public details on affected products, impact, or fixes are included here.
CVE-2016-1098
Technical details for CVE-2016-1098 are not publicly available in the provided documents. Monitor for updates; based on current sources, specifics on affected components, impact, or fixes are not disclosed here.
CVE-2016-4125
CVE-2016-4125 is listed as an Adobe Flash Player vulnerability addressed by the 11.2.202.626 update (APSB16-18) across multiple Linux distributions (SUSE/openSUSE) and Red Hat advisories. The connected documents confirm the CVE is part of a batch of issues fixed in the Flash Player update and lin...
CVE-2016-4248
Technical details about CVE-2016-4248 are not publicly available in the provided documents. The connected EUVD entries describe malware-related items, but do not include product, impact, vectors, or remediation specifics for this CVE. Monitor for updates.
CVE-2016-4279
Technical details about CVE-2016-4279 are not publicly provided in the connected documents. Monitor for updates. Information in EUVD entries mentions malware but does not describe affected software, root cause, or remediation.
CVE-2016-6989
Technical details for CVE-2016-6989 are not publicly provided in the supplied documents; no validated affected products, vulnerable components, or remediation are described here. Monitor for updates in connected sources for concrete information.
CVE-2016-7870
CVE-2016-7870 affects Adobe Flash Player versions 23.0.0.207 and earlier (Windows, Linux, etc.) with a buffer overflow/underflow in the RegExp class used for specific search strategies. Successful exploitation could lead to arbitrary code execution. Mitigation: upgrade to Flash Player 24.0.0.186 ...
CVE-2017-2938
Adobe Flash Player 24.x vulnerable: CVE-2017-2938 is a security bypass in the handling of TCP connections affecting Flash Player versions up to 24.0.0.186. Remediation per connected documents is upgrading to the patched build (24.0.0.194 or later) as part of APSB17-02/openSUSE update openSUSE-201...
CVE-2017-2993
CVE-2017-2993 affects Adobe Flash Player up to version 24.0.0.194 and earlier. The issue is a use-after-free in event handler handling, potentially allowing arbitrary code execution. Exploitation can occur remotely via a crafted SWF file; impact is code execution with high severity. The standard ...