Flash Player@* Security Vulnerabilities and Issues — Page 18 of Flash Player@* CVE List

Lucene search

AdobeFlash Player*

1067 matches found

CVE•added 2014/09/10 1:55 a.m.•60 views

CVE-2014-0551

Adobe Flash Player before 13.0.0.244 and 14.x and 15.x before 15.0.0.152 on Windows and OS X and before 11.2.202.406 on Linux, Adobe AIR before 15.0.0.249 on Windows and OS X and before 15.0.0.252 on Android, Adobe AIR SDK before 15.0.0.249, and Adobe AIR SDK & Compiler before 15.0.0.249 allow atta...

10CVSS7.7AI score0.0558EPSS

CVE•added 2014/09/10 1:55 a.m.•60 views

CVE-2014-0555

10CVSS7.7AI score0.0558EPSS

CVE•added 2014/12/10 9:59 p.m.•60 views

CVE-2014-0580

Adobe Flash Player before 13.0.0.259 and 14.x through 16.x before 16.0.0.235 on Windows and OS X and before 11.2.202.425 on Linux allows remote attackers to bypass the Same Origin Policy via unspecified vectors.

10CVSS6.6AI score0.01972EPSS

CVE•added 2015/01/13 11:59 p.m.•60 views

CVE-2015-0306

Adobe Flash Player before 13.0.0.260 and 14.x through 16.x before 16.0.0.257 on Windows and OS X and before 11.2.202.429 on Linux, Adobe AIR before 16.0.0.245 on Windows and OS X and before 16.0.0.272 on Android, Adobe AIR SDK before 16.0.0.272, and Adobe AIR SDK & Compiler before 16.0.0.272 allow ...

10CVSS7.7AI score0.11306EPSS

CVE•added 2015/02/06 12:59 a.m.•60 views

CVE-2015-0323

Heap-based buffer overflow in Adobe Flash Player before 13.0.0.269 and 14.x through 16.x before 16.0.0.305 on Windows and OS X and before 11.2.202.442 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2015-0327.

10CVSS7.9AI score0.07941EPSS

CVE•added 2015/03/13 5:59 p.m.•60 views

CVE-2015-0338

Integer overflow in Adobe Flash Player before 13.0.0.277 and 14.x through 17.x before 17.0.0.134 on Windows and OS X and before 11.2.202.451 on Linux allows attackers to execute arbitrary code via unspecified vectors.

10CVSS9.7AI score0.04014EPSS

CVE•added 2015/05/13 11:0 a.m.•60 views

CVE-2015-3079

Adobe Flash Player before 13.0.0.289 and 14.x through 17.x before 17.0.0.188 on Windows and OS X and before 11.2.202.460 on Linux, Adobe AIR before 17.0.0.172, Adobe AIR SDK before 17.0.0.172, and Adobe AIR SDK & Compiler before 17.0.0.172 allow attackers to bypass intended access restrictions and ...

5CVSS6AI score0.01007EPSS

CVE•added 2015/07/09 4:59 p.m.•60 views

CVE-2015-3119

Adobe Flash Player before 13.0.0.302 and 14.x through 18.x before 18.0.0.203 on Windows and OS X and before 11.2.202.481 on Linux, Adobe AIR before 18.0.0.180, Adobe AIR SDK before 18.0.0.180, and Adobe AIR SDK & Compiler before 18.0.0.180 allow attackers to execute arbitrary code by leveraging an ...

10CVSS7.3AI score0.08783EPSS

CVE•added 2015/07/09 4:59 p.m.•60 views

CVE-2015-3125

Adobe Flash Player before 13.0.0.302 and 14.x through 18.x before 18.0.0.203 on Windows and OS X and before 11.2.202.481 on Linux, Adobe AIR before 18.0.0.180, Adobe AIR SDK before 18.0.0.180, and Adobe AIR SDK & Compiler before 18.0.0.180 allow remote attackers to bypass the Same Origin Policy via...

5CVSS6.3AI score0.2766EPSS

CVE•added 2015/08/14 1:59 a.m.•60 views

CVE-2015-5541

Heap-based buffer overflow in Adobe Flash Player before 18.0.0.232 on Windows and OS X and before 11.2.202.508 on Linux, Adobe AIR before 18.0.0.199, Adobe AIR SDK before 18.0.0.199, and Adobe AIR SDK & Compiler before 18.0.0.199 allows attackers to execute arbitrary code via unspecified vectors, a...

10CVSS7.8AI score0.10643EPSS

CVE•added 2015/08/14 1:59 a.m.•60 views

CVE-2015-5557

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.232 on Windows and OS X and before 11.2.202.508 on Linux, Adobe AIR before 18.0.0.199, Adobe AIR SDK before 18.0.0.199, and Adobe AIR SDK & Compiler before 18.0.0.199 allows attackers to execute arbitrary code via unspecified vectors,...

10CVSS7.7AI score0.65898EPSS

CVE•added 2015/08/14 1:59 a.m.•60 views

CVE-2015-5559

10CVSS7.7AI score0.65898EPSS

CVE•added 2015/08/14 1:59 a.m.•60 views

CVE-2015-5562

Adobe Flash Player before 18.0.0.232 on Windows and OS X and before 11.2.202.508 on Linux, Adobe AIR before 18.0.0.199, Adobe AIR SDK before 18.0.0.199, and Adobe AIR SDK & Compiler before 18.0.0.199 allow attackers to execute arbitrary code by leveraging an unspecified "type confusion," a differen...

10CVSS7.3AI score0.65898EPSS

CVE•added 2015/09/22 10:59 a.m.•60 views

CVE-2015-5568

Adobe Flash Player before 18.0.0.241 and 19.x before 19.0.0.185 on Windows and OS X and before 11.2.202.521 on Linux, Adobe AIR before 19.0.0.190, Adobe AIR SDK before 19.0.0.190, and Adobe AIR SDK & Compiler before 19.0.0.190 allow attackers to cause a denial of service (vector-length corruption) ...

10CVSS7.1AI score0.31842EPSS

CVE•added 2015/09/22 10:59 a.m.•60 views

CVE-2015-5581

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.241 and 19.x before 19.0.0.185 on Windows and OS X and before 11.2.202.521 on Linux, Adobe AIR before 19.0.0.190, Adobe AIR SDK before 19.0.0.190, and Adobe AIR SDK & Compiler before 19.0.0.190 allows attackers to execute arbitrary co...

10CVSS7.5AI score0.71007EPSS

CVE•added 2015/09/22 10:59 a.m.•60 views

CVE-2015-6677

Adobe Flash Player before 18.0.0.241 and 19.x before 19.0.0.185 on Windows and OS X and before 11.2.202.521 on Linux, Adobe AIR before 19.0.0.190, Adobe AIR SDK before 19.0.0.190, and Adobe AIR SDK & Compiler before 19.0.0.190 allow attackers to execute arbitrary code or cause a denial of service (...

10CVSS7.8AI score0.06367EPSS

CVE•added 2015/12/10 6:0 a.m.•60 views

CVE-2015-8438

Heap-based buffer overflow in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allows attackers to execute arbit...

9.3CVSS8.9AI score0.07527EPSS

CVE•added 2015/12/10 6:0 a.m.•60 views

CVE-2015-8453

Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allow attackers to bypass the ASLR protection mechanism via JIT...

4.3CVSS8.5AI score0.06007EPSS

CVE•added 2016/03/12 3:59 p.m.•60 views

CVE-2016-0987

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21.0.0.182 on Windows and OS X and before 11.2.202.577 on Linux, Adobe AIR before 21.0.0.176, Adobe AIR SDK before 21.0.0.176, and Adobe AIR SDK & Compiler before 21.0.0.176 allows attackers to execute...

9.3CVSS9AI score0.50072EPSS

CVE•added 2016/04/09 1:59 a.m.•60 views

CVE-2016-1028

Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-1012, CVE-20...

9.3CVSS9AI score0.05385EPSS

CVE•added 2016/04/09 1:59 a.m.•60 views

CVE-2016-1031

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-1011, CVE-2016-1013, CVE-2016...

9.3CVSS9.4AI score0.55399EPSS

CVE•added 2016/06/16 2:59 p.m.•60 views

CVE-2016-4160

Adobe Flash Player before 18.0.0.352 and 19.x through 21.x before 21.0.0.242 on Windows and OS X and before 11.2.202.621 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-1096, CVE-20...

9.8CVSS8.2AI score0.28125EPSS

CVE•added 2016/07/13 2:0 a.m.•60 views

CVE-2016-4239

Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-4172, CVE-20...

9.3CVSS9.3AI score0.44744EPSS

CVE•added 2016/12/15 6:59 a.m.•60 views

CVE-2016-7878

Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable use after free vulnerability in the PSDK's MediaPlayer class. Successful exploitation could lead to arbitrary code execution.

8.8CVSS8.8AI score0.03325EPSS

CVE•added 2017/04/12 2:59 p.m.•60 views

CVE-2017-3063

Adobe Flash Player versions 25.0.0.127 and earlier have an exploitable use after free vulnerability in the ActionScript2 NetStream class. Successful exploitation could lead to arbitrary code execution.

10CVSS9.6AI score0.0454EPSS

CVE•added 2017/06/20 5:29 p.m.•60 views

CVE-2017-3077

Adobe Flash Player versions 25.0.0.171 and earlier have an exploitable memory corruption vulnerability in the PNG image parser. Successful exploitation could lead to arbitrary code execution.

10CVSS9.4AI score0.53858EPSS

CVE•added 2017/06/20 5:29 p.m.•60 views

CVE-2017-3083

Adobe Flash Player versions 25.0.0.171 and earlier have an exploitable use after free vulnerability in the Primetime SDK functionality related to the profile metadata of the media stream. Successful exploitation could lead to arbitrary code execution.

10CVSS9.3AI score0.01682EPSS

CVE•added 2018/05/19 5:29 p.m.•60 views

CVE-2018-4933

Adobe Flash Player versions 29.0.0.113 and earlier have an exploitable out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.

6.5CVSS6.8AI score0.03592EPSS

CVE•added 2007/07/11 4:30 p.m.•59 views

CVE-2007-3456

Integer overflow in Adobe Flash Player 9.0.45.0 and earlier might allow remote attackers to execute arbitrary code via a large length value for a (1) Long string or (2) XML variable type in a crafted (a) FLV or (b) SWF file, related to an "input validation error," including a signed comparison of v...

9.3CVSS8AI score0.76622EPSS

CVE•added 2008/04/09 9:5 p.m.•59 views

CVE-2007-6019

Adobe Flash Player 9.0.115.0 and earlier, and 8.0.39.0 and earlier, allows remote attackers to execute arbitrary code via an SWF file with a modified DeclareFunction2 Actionscript tag, which prevents an object from being instantiated properly.

9.3CVSS7.4AI score0.66216EPSS

CVE•added 2010/06/15 6:0 p.m.•59 views

CVE-2010-2174

Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, might allow attackers to execute arbitrary code via unspecified vectors, related to an "invalid pointer vulnerability" and the newfunction (0x44) operator, a different vulnerability than CVE-2010-2173.

9.3CVSS9.6AI score0.0122EPSS

CVE•added 2011/02/10 4:0 p.m.•59 views

CVE-2011-0558

Integer overflow in Adobe Flash Player before 10.2.152.26 allows attackers to execute arbitrary code via a large array length value in the ActionScript method of the Function class.

9.3CVSS8.8AI score0.02515EPSS

CVE•added 2011/05/13 10:55 p.m.•59 views

CVE-2011-0579

Adobe Flash Player before 10.3.181.14 on Windows, Mac OS X, Linux, and Solaris and before 10.3.185.21 on Android allows attackers to obtain sensitive information via unspecified vectors.

5CVSS8AI score0.01059EPSS

CVE•added 2012/06/09 12:55 a.m.•59 views

CVE-2012-2040

Untrusted search path vulnerability in the installer in Adobe Flash Player before 10.3.183.20 and 11.x before 11.3.300.257 on Windows and Mac OS X; before 10.3.183.20 and 11.x before 11.2.202.236 on Linux; before 11.1.111.10 on Android 2.x and 3.x; and before 11.1.115.9 on Android 4.x, and Adobe AI...

9.3CVSS6.2AI score0.01249EPSS

CVE•added 2012/10/09 11:13 a.m.•59 views

CVE-2012-5261

Adobe Flash Player before 10.3.183.29 and 11.x before 11.4.402.287 on Windows and Mac OS X, before 10.3.183.29 and 11.x before 11.2.202.243 on Linux, before 11.1.111.19 on Android 2.x and 3.x, and before 11.1.115.20 on Android 4.x; Adobe AIR before 3.4.0.2710; and Adobe AIR SDK before 3.4.0.2710 al...

10CVSS7.8AI score0.06135EPSS

CVE•added 2012/10/09 11:13 a.m.•59 views

CVE-2012-5263

10CVSS7.8AI score0.06135EPSS

CVE•added 2012/11/07 5:41 a.m.•59 views

CVE-2012-5274

Buffer overflow in Adobe Flash Player before 10.3.183.43 and 11.x before 11.5.502.110 on Windows and Mac OS X, before 10.3.183.43 and 11.x before 11.2.202.251 on Linux, before 11.1.111.24 on Android 2.x and 3.x, and before 11.1.115.27 on Android 4.x; Adobe AIR before 3.5.0.600; and Adobe AIR SDK be...

10CVSS7.7AI score0.03431EPSS

CVE•added 2013/03/13 4:55 p.m.•59 views

CVE-2013-0650

Use-after-free vulnerability in Adobe Flash Player before 10.3.183.68 and 11.x before 11.6.602.180 on Windows and Mac OS X, before 10.3.183.68 and 11.x before 11.2.202.275 on Linux, before 11.1.111.44 on Android 2.x and 3.x, and before 11.1.115.48 on Android 4.x; Adobe AIR before 3.6.0.6090; Adobe ...

10CVSS7.4AI score0.03647EPSS

CVE•added 2014/09/10 1:55 a.m.•59 views

CVE-2014-0557

10CVSS6.3AI score0.02702EPSS

CVE•added 2015/07/09 4:59 p.m.•59 views

CVE-2014-0578

Adobe Flash Player before 13.0.0.302 and 14.x through 18.x before 18.0.0.203 on Windows and OS X and before 11.2.202.481 on Linux, Adobe AIR before 18.0.0.180, Adobe AIR SDK before 18.0.0.180, and Adobe AIR SDK & Compiler before 18.0.0.180 allow remote attackers to bypass the Same Origin Policy via...

5CVSS6.3AI score0.2766EPSS

CVE•added 2015/01/13 11:59 p.m.•59 views

CVE-2015-0308

Use-after-free vulnerability in Adobe Flash Player before 13.0.0.260 and 14.x through 16.x before 16.0.0.257 on Windows and OS X and before 11.2.202.429 on Linux, Adobe AIR before 16.0.0.245 on Windows and OS X and before 16.0.0.272 on Android, Adobe AIR SDK before 16.0.0.272, and Adobe AIR SDK & C...

10CVSS7.4AI score0.08652EPSS

CVE•added 2015/02/06 12:59 a.m.•59 views

CVE-2015-0327

10CVSS7.9AI score0.07941EPSS

CVE•added 2015/07/09 4:59 p.m.•59 views

CVE-2015-3120

10CVSS7.3AI score0.08783EPSS

CVE•added 2015/07/09 4:59 p.m.•59 views

CVE-2015-3133

10CVSS7.7AI score0.65297EPSS

CVE•added 2015/07/09 4:59 p.m.•59 views

CVE-2015-3135

Heap-based buffer overflow in Adobe Flash Player before 13.0.0.302 and 14.x through 18.x before 18.0.0.203 on Windows and OS X and before 11.2.202.481 on Linux, Adobe AIR before 18.0.0.180, Adobe AIR SDK before 18.0.0.180, and Adobe AIR SDK & Compiler before 18.0.0.180 allows attackers to execute a...

10CVSS6.4AI score0.68034EPSS

CVE•added 2015/07/09 4:59 p.m.•59 views

CVE-2015-4431

10CVSS7.7AI score0.65297EPSS

CVE•added 2015/07/09 4:59 p.m.•59 views

CVE-2015-5116

Adobe Flash Player before 13.0.0.302 and 14.x through 18.x before 18.0.0.203 on Windows and OS X and before 11.2.202.481 on Linux, Adobe AIR before 18.0.0.180, Adobe AIR SDK before 18.0.0.180, and Adobe AIR SDK & Compiler before 18.0.0.180 allow remote attackers to bypass the Same Origin Policy via...

5CVSS6.3AI score0.2766EPSS

CVE•added 2015/09/22 10:59 a.m.•59 views

CVE-2015-5576

Adobe Flash Player before 18.0.0.241 and 19.x before 19.0.0.185 on Windows and OS X and before 11.2.202.521 on Linux, Adobe AIR before 19.0.0.190, Adobe AIR SDK before 19.0.0.190, and Adobe AIR SDK & Compiler before 19.0.0.190 do not properly restrict discovery of memory addresses, which allows att...

5CVSS6.4AI score0.03799EPSS

CVE•added 2015/09/22 10:59 a.m.•59 views

CVE-2015-5577

Adobe Flash Player before 18.0.0.241 and 19.x before 19.0.0.185 on Windows and OS X and before 11.2.202.521 on Linux, Adobe AIR before 19.0.0.190, Adobe AIR SDK before 19.0.0.190, and Adobe AIR SDK & Compiler before 19.0.0.190 allow attackers to execute arbitrary code or cause a denial of service (...

10CVSS7.8AI score0.06367EPSS

CVE•added 2015/12/10 5:59 a.m.•59 views

CVE-2015-8406

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allows attackers to execute arb...

10CVSS9.2AI score0.60453EPSS

Total number of security vulnerabilities1067