Flash Player Security Vulnerabilities and Issues — Page 8 of Flash Player CVE List

Lucene search

AdobeFlash Player

1084 matches found

CVE•added 2015/08/14 1:59 a.m.•72 views

CVE-2015-5551

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.232 on Windows and OS X and before 11.2.202.508 on Linux, Adobe AIR before 18.0.0.199, Adobe AIR SDK before 18.0.0.199, and Adobe AIR SDK & Compiler before 18.0.0.199 allows attackers to execute arbitrary code via unspecified vectors,...

10CVSS7.7AI score0.65898EPSS

CVE•added 2015/11/11 12:59 p.m.•72 views

CVE-2015-7652

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.261 and 19.x before 19.0.0.245 on Windows and OS X and before 11.2.202.548 on Linux, Adobe AIR before 19.0.0.241, Adobe AIR SDK before 19.0.0.241, and Adobe AIR SDK & Compiler before 19.0.0.241 allows attackers to execute arbitrary co...

9.3CVSS7.5AI score0.74587EPSS

CVE•added 2015/11/11 12:59 p.m.•72 views

CVE-2015-7655

9.3CVSS7.5AI score0.74587EPSS

CVE•added 2015/11/11 12:59 p.m.•72 views

CVE-2015-7656

9.3CVSS7.5AI score0.74587EPSS

CVE•added 2015/12/10 5:59 a.m.•72 views

CVE-2015-8048

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allows attackers to execute arb...

10CVSS9.2AI score0.60453EPSS

CVE•added 2015/12/10 5:59 a.m.•72 views

CVE-2015-8421

10CVSS9.2AI score0.60453EPSS

CVE•added 2015/12/10 5:59 a.m.•72 views

CVE-2015-8425

10CVSS9.2AI score0.60453EPSS

CVE•added 2015/12/10 5:59 a.m.•72 views

CVE-2015-8436

Use-after-free vulnerability in the PrintJob object implementation in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0...

9.3CVSS9.1AI score0.60453EPSS

CVE•added 2015/12/28 11:59 p.m.•72 views

CVE-2015-8646

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.324 and 19.x and 20.x before 20.0.0.267 on Windows and OS X and before 11.2.202.559 on Linux, Adobe AIR before 20.0.0.233, Adobe AIR SDK before 20.0.0.233, and Adobe AIR SDK & Compiler before 20.0.0.233 allows attackers to execute arb...

9.3CVSS9.1AI score0.49456EPSS

CVE•added 2015/12/28 11:59 p.m.•72 views

CVE-2015-8647

9.3CVSS9.1AI score0.49456EPSS

CVE•added 2016/03/12 3:59 p.m.•72 views

CVE-2016-0990

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21.0.0.182 on Windows and OS X and before 11.2.202.577 on Linux, Adobe AIR before 21.0.0.176, Adobe AIR SDK before 21.0.0.176, and Adobe AIR SDK & Compiler before 21.0.0.176 allows attackers to execute...

9.3CVSS9AI score0.50072EPSS

CVE•added 2016/05/11 11:0 a.m.•72 views

CVE-2016-1096

Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-064.

7.6CVSS8.3AI score0.28125EPSS

CVE•added 2016/06/16 2:59 p.m.•72 views

CVE-2016-4151

Unspecified vulnerability in Adobe Flash Player 21.0.0.242 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-083.

9.3CVSS8.9AI score0.03097EPSS

CVE•added 2016/09/14 6:59 p.m.•72 views

CVE-2016-4274

Adobe Flash Player before 18.0.0.375 and 19.x through 23.x before 23.0.0.162 on Windows and OS X and before 11.2.202.635 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-4275, CVE-20...

9.3CVSS9.1AI score0.26204EPSS

CVE•added 2016/09/14 6:59 p.m.•72 views

CVE-2016-4275

9.3CVSS9.1AI score0.26204EPSS

CVE•added 2016/09/14 6:59 p.m.•72 views

CVE-2016-4277

Adobe Flash Player before 18.0.0.375 and 19.x through 23.x before 23.0.0.162 on Windows and OS X and before 11.2.202.635 on Linux allows attackers to bypass intended access restrictions and obtain sensitive information via unspecified vectors, a different vulnerability than CVE-2016-4271 and CVE-20...

6.5CVSS7.1AI score0.01676EPSS

CVE•added 2016/09/14 6:59 p.m.•72 views

CVE-2016-6923

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.375 and 19.x through 23.x before 23.0.0.162 on Windows and OS X and before 11.2.202.635 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-4272, CVE-2016-4279, CVE-2016...

9.3CVSS9AI score0.02828EPSS

CVE•added 2016/10/13 7:59 p.m.•72 views

CVE-2016-6987

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.382 and 19.x through 23.x before 23.0.0.185 on Windows and OS X and before 11.2.202.637 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-6981.

9.3CVSS8.9AI score0.02869EPSS

CVE•added 2018/01/09 9:29 p.m.•72 views

CVE-2018-4871

An Out-of-bounds Read issue was discovered in Adobe Flash Player before 28.0.0.137. This vulnerability occurs because of computation that reads data that is past the end of the target buffer. The use of an invalid (out-of-range) pointer offset during access of internal data structure fields causes ...

7.5CVSS6.7AI score0.02904EPSS

CVE•added 2010/06/15 6:0 p.m.•71 views

CVE-2010-2177

Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-2160, CVE-2010-2165, CVE-2010-2166,...

9.3CVSS9.9AI score0.01631EPSS

CVE•added 2010/11/07 10:0 p.m.•71 views

CVE-2010-3652

Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability...

9.3CVSS9.7AI score0.03964EPSS

CVE•added 2012/10/09 11:13 a.m.•71 views

CVE-2012-5256

Adobe Flash Player before 10.3.183.29 and 11.x before 11.4.402.287 on Windows and Mac OS X, before 10.3.183.29 and 11.x before 11.2.202.243 on Linux, before 11.1.111.19 on Android 2.x and 3.x, and before 11.1.115.20 on Android 4.x; Adobe AIR before 3.4.0.2710; and Adobe AIR SDK before 3.4.0.2710 al...

10CVSS7.8AI score0.06135EPSS

CVE•added 2014/06/11 10:57 a.m.•71 views

CVE-2014-0533

Cross-site scripting (XSS) vulnerability in Adobe Flash Player before 13.0.0.223 and 14.x before 14.0.0.125 on Windows and OS X and before 11.2.202.378 on Linux, Adobe AIR before 14.0.0.110, Adobe AIR SDK before 14.0.0.110, and Adobe AIR SDK & Compiler before 14.0.0.110 allows remote attackers to i...

4.3CVSS5.6AI score0.03466EPSS

CVE•added 2014/11/11 11:55 p.m.•71 views

CVE-2014-8440

Adobe Flash Player before 13.0.0.252 and 14.x and 15.x before 15.0.0.223 on Windows and OS X and before 11.2.202.418 on Linux, Adobe AIR before 15.0.0.356, Adobe AIR SDK before 15.0.0.356, and Adobe AIR SDK & Compiler before 15.0.0.356 allow attackers to execute arbitrary code or cause a denial of ...

10CVSS7.7AI score0.88009EPSS

CVE•added 2015/04/14 10:59 p.m.•71 views

CVE-2015-0356

Adobe Flash Player before 13.0.0.281 and 14.x through 17.x before 17.0.0.169 on Windows and OS X and before 11.2.202.457 on Linux allows attackers to execute arbitrary code by leveraging an unspecified "type confusion."

10CVSS7.5AI score0.05352EPSS

CVE•added 2015/04/14 10:59 p.m.•71 views

CVE-2015-0358

Use-after-free vulnerability in Adobe Flash Player before 13.0.0.281 and 14.x through 17.x before 17.0.0.169 on Windows and OS X and before 11.2.202.457 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2015-0349, CVE-2015-0351, and CVE-...

10CVSS7.5AI score0.1102EPSS

CVE•added 2015/06/10 1:59 a.m.•71 views

CVE-2015-3107

Use-after-free vulnerability in Adobe Flash Player before 13.0.0.292 and 14.x through 18.x before 18.0.0.160 on Windows and OS X and before 11.2.202.466 on Linux, Adobe AIR before 18.0.0.144 on Windows and before 18.0.0.143 on OS X and Android, Adobe AIR SDK before 18.0.0.144 on Windows and before ...

10CVSS7.4AI score0.57902EPSS

CVE•added 2015/07/09 4:59 p.m.•71 views

CVE-2015-3132

Use-after-free vulnerability in Adobe Flash Player before 13.0.0.302 and 14.x through 18.x before 18.0.0.203 on Windows and OS X and before 11.2.202.481 on Linux, Adobe AIR before 18.0.0.180, Adobe AIR SDK before 18.0.0.180, and Adobe AIR SDK & Compiler before 18.0.0.180 allows attackers to execute...

10CVSS7.5AI score0.68245EPSS

CVE•added 2015/08/14 1:59 a.m.•71 views

CVE-2015-5547

Adobe Flash Player before 18.0.0.232 on Windows and OS X and before 11.2.202.508 on Linux, Adobe AIR before 18.0.0.199, Adobe AIR SDK before 18.0.0.199, and Adobe AIR SDK & Compiler before 18.0.0.199 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unsp...

10CVSS7.7AI score0.52578EPSS

CVE•added 2015/08/14 1:59 a.m.•71 views

CVE-2015-5558

Adobe Flash Player before 18.0.0.232 on Windows and OS X and before 11.2.202.508 on Linux, Adobe AIR before 18.0.0.199, Adobe AIR SDK before 18.0.0.199, and Adobe AIR SDK & Compiler before 18.0.0.199 allow attackers to execute arbitrary code by leveraging an unspecified "type confusion," a differen...

10CVSS7.3AI score0.65898EPSS

CVE•added 2015/08/14 1:59 a.m.•71 views

CVE-2015-5563

10CVSS7.7AI score0.65898EPSS

CVE•added 2015/10/15 12:0 a.m.•71 views

CVE-2015-7628

Adobe Flash Player before 18.0.0.252 and 19.x before 19.0.0.207 on Windows and OS X and before 11.2.202.535 on Linux, Adobe AIR before 19.0.0.213, Adobe AIR SDK before 19.0.0.213, and Adobe AIR SDK & Compiler before 19.0.0.213 allow remote attackers to bypass the Same Origin Policy and obtain sensi...

5CVSS6.2AI score0.01385EPSS

CVE•added 2015/11/11 12:59 p.m.•71 views

CVE-2015-7653

9.3CVSS7.5AI score0.74587EPSS

CVE•added 2015/12/10 5:59 a.m.•71 views

CVE-2015-8067

10CVSS9.2AI score0.60453EPSS

CVE•added 2016/03/12 3:59 p.m.•71 views

CVE-2016-1000

9.3CVSS9AI score0.50072EPSS

CVE•added 2016/05/11 11:0 a.m.•71 views

CVE-2016-1105

7.6CVSS8.2AI score0.42408EPSS

CVE•added 2016/06/16 2:59 p.m.•71 views

CVE-2016-4121

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.352 and 19.x through 21.x before 21.0.0.242 on Windows and OS X and before 11.2.202.621 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-1097, CVE-2016-1106, CVE-2016...

9.8CVSS8AI score0.45392EPSS

CVE•added 2016/06/16 2:59 p.m.•71 views

CVE-2016-4123

9.3CVSS8.9AI score0.02194EPSS

CVE•added 2016/06/16 2:59 p.m.•71 views

CVE-2016-4136

9.3CVSS8.9AI score0.4017EPSS

CVE•added 2016/06/16 2:59 p.m.•71 views

CVE-2016-4148

9.3CVSS8.9AI score0.02182EPSS

CVE•added 2016/06/16 2:59 p.m.•71 views

CVE-2016-4156

9.3CVSS8.9AI score0.04537EPSS

CVE•added 2016/07/13 1:59 a.m.•71 views

CVE-2016-4177

Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code or cause a denial of service (stack memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-4176.

9.3CVSS8.9AI score0.39663EPSS

CVE•added 2016/07/13 2:0 a.m.•71 views

CVE-2016-4230

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-4173, CVE-2016-4174, CVE-2016...

9.3CVSS9AI score0.73665EPSS

CVE•added 2016/09/14 6:59 p.m.•71 views

CVE-2016-4278

6.5CVSS7.1AI score0.01676EPSS

CVE•added 2016/11/08 5:59 p.m.•71 views

CVE-2016-7861

Adobe Flash Player versions 23.0.0.205 and earlier, 11.2.202.643 and earlier have an exploitable type confusion vulnerability. Successful exploitation could lead to arbitrary code execution.

9.3CVSS8.7AI score0.11156EPSS

CVE•added 2017/01/11 4:59 a.m.•71 views

CVE-2017-2926

Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable memory corruption vulnerability related to processing of atoms in MP4 files. Successful exploitation could lead to arbitrary code execution.

9.3CVSS8.9AI score0.01067EPSS

CVE•added 2017/01/11 4:59 a.m.•71 views

CVE-2017-2928

Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable memory corruption vulnerability related to setting visual mode effects. Successful exploitation could lead to arbitrary code execution.

9.3CVSS8.9AI score0.01061EPSS

CVE•added 2017/02/15 6:59 a.m.•71 views

CVE-2017-2990

Adobe Flash Player versions 24.0.0.194 and earlier have an exploitable memory corruption vulnerability in the h264 decompression routine. Successful exploitation could lead to arbitrary code execution.

9.3CVSS8.9AI score0.01244EPSS

CVE•added 2017/07/17 1:18 p.m.•71 views

CVE-2017-3100

Adobe Flash Player versions 26.0.0.131 and earlier have an exploitable memory corruption vulnerability in the Action Script 2 BitmapData class. Successful exploitation could lead to memory address disclosure.

6.5CVSS7.2AI score0.01881EPSS

CVE•added 2008/12/08 11:30 a.m.•70 views

CVE-2008-5362

The DefineConstantPool action in the ActionScript 2 virtual machine in Adobe Flash Player 10.x before 10.0.12.36 and 9.x before 9.0.151.0, and Adobe AIR before 1.5, accepts an untrusted input value for a "constant count," which allows remote attackers to read sensitive data from process memory via ...

4.3CVSS6.1AI score0.01538EPSS

Total number of security vulnerabilities1084