Flash Player@* Security Vulnerabilities and Issues — Page 6 of Flash Player@* CVE List

Lucene search

AdobeFlash Player*

1067 matches found

CVE•added 2017/02/15 6:59 a.m.•78 views

CVE-2017-2993

Adobe Flash Player versions 24.0.0.194 and earlier have an exploitable use after free vulnerability related to event handlers. Successful exploitation could lead to arbitrary code execution.

9.3CVSS8.8AI score0.01322EPSS

CVE•added 2017/05/09 4:29 p.m.•78 views

CVE-2017-3069

Adobe Flash Player versions 25.0.0.148 and earlier have an exploitable memory corruption vulnerability in the BlendMode class. Successful exploitation could lead to arbitrary code execution.

9.3CVSS8.9AI score0.01969EPSS

CVE•added 2017/08/11 7:29 p.m.•78 views

CVE-2017-3106

Adobe Flash Player versions 26.0.0.137 and earlier have an exploitable type confusion vulnerability when parsing SWF files. Successful exploitation could lead to arbitrary code execution.

9.3CVSS8.7AI score0.64588EPSS

CVE•added 2018/07/09 7:29 p.m.•78 views

CVE-2018-5001

Adobe Flash Player versions 29.0.0.171 and earlier have an Out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.

6.5CVSS6.7AI score0.01364EPSS

CVE•added 2010/06/15 6:0 p.m.•77 views

CVE-2010-2171

Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via vectors related to SWF files, decompression of embedded JPEG image data, and the DefineBits and ...

9.3CVSS9.8AI score0.01631EPSS

CVE•added 2010/06/15 6:0 p.m.•77 views

CVE-2010-2187

Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-2160, CVE-2010-2165, CVE-2010-2166,...

9.3CVSS9.9AI score0.01631EPSS

CVE•added 2010/11/07 10:0 p.m.•77 views

CVE-2010-3636

Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, does not properly handle unspecified encodings during the parsing of a cross-domain policy file, which allows remote web servers to bypass intended access restrictions...

9.3CVSS9.2AI score0.02261EPSS

CVE•added 2011/08/10 10:55 p.m.•77 views

CVE-2011-2135

Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and Solaris and before 10.3.186.3 on Android, and Adobe AIR before 2.7.1 on Windows and Mac OS X and before 2.7.1.1961 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspec...

10CVSS9AI score0.89835EPSS

CVE•added 2014/04/08 11:55 p.m.•77 views

CVE-2014-0508

Adobe Flash Player before 11.7.700.275 and 11.8.x through 13.0.x before 13.0.0.182 on Windows and OS X and before 11.2.202.350 on Linux, Adobe AIR before 13.0.0.83 on Android, Adobe AIR SDK before 13.0.0.83, and Adobe AIR SDK & Compiler before 13.0.0.83 allow attackers to bypass intended access res...

5CVSS6AI score0.01606EPSS

CVE•added 2015/02/06 12:59 a.m.•77 views

CVE-2015-0316

Adobe Flash Player before 13.0.0.269 and 14.x through 16.x before 16.0.0.305 on Windows and OS X and before 11.2.202.442 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2015-0314, CVE-20...

10CVSS7.7AI score0.89185EPSS

CVE•added 2015/02/06 12:59 a.m.•77 views

CVE-2015-0330

10CVSS7.7AI score0.89185EPSS

CVE•added 2015/04/14 10:59 p.m.•77 views

CVE-2015-3039

Use-after-free vulnerability in Adobe Flash Player before 13.0.0.281 and 14.x through 17.x before 17.0.0.169 on Windows and OS X and before 11.2.202.457 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2015-0349, CVE-2015-0351, and CVE-...

10CVSS7.5AI score0.1102EPSS

CVE•added 2015/06/10 1:59 a.m.•77 views

CVE-2015-3103

Use-after-free vulnerability in Adobe Flash Player before 13.0.0.292 and 14.x through 18.x before 18.0.0.160 on Windows and OS X and before 11.2.202.466 on Linux, Adobe AIR before 18.0.0.144 on Windows and before 18.0.0.143 on OS X and Android, Adobe AIR SDK before 18.0.0.144 on Windows and before ...

10CVSS7.4AI score0.57902EPSS

CVE•added 2015/06/10 1:59 a.m.•77 views

CVE-2015-3105

Adobe Flash Player before 13.0.0.292 and 14.x through 18.x before 18.0.0.160 on Windows and OS X and before 11.2.202.466 on Linux, Adobe AIR before 18.0.0.144 on Windows and before 18.0.0.143 on OS X and Android, Adobe AIR SDK before 18.0.0.144 on Windows and before 18.0.0.143 on OS X, and Adobe AI...

10CVSS7.6AI score0.90282EPSS

CVE•added 2015/06/10 1:59 a.m.•77 views

CVE-2015-3108

5CVSS6.3AI score0.00443EPSS

CVE•added 2015/11/11 12:59 p.m.•77 views

CVE-2015-7654

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.261 and 19.x before 19.0.0.245 on Windows and OS X and before 11.2.202.548 on Linux, Adobe AIR before 19.0.0.241, Adobe AIR SDK before 19.0.0.241, and Adobe AIR SDK & Compiler before 19.0.0.241 allows attackers to execute arbitrary co...

9.3CVSS7.5AI score0.74587EPSS

CVE•added 2015/11/11 12:59 p.m.•77 views

CVE-2015-7657

9.3CVSS7.5AI score0.74587EPSS

CVE•added 2015/12/10 5:59 a.m.•77 views

CVE-2015-8068

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allows attackers to execute arb...

10CVSS9.2AI score0.60453EPSS

CVE•added 2015/12/28 11:59 p.m.•77 views

CVE-2015-8639

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.324 and 19.x and 20.x before 20.0.0.267 on Windows and OS X and before 11.2.202.559 on Linux, Adobe AIR before 20.0.0.233, Adobe AIR SDK before 20.0.0.233, and Adobe AIR SDK & Compiler before 20.0.0.233 allows attackers to execute arb...

9.3CVSS9.1AI score0.49456EPSS

CVE•added 2016/03/12 3:59 p.m.•77 views

CVE-2016-0960

Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21.0.0.182 on Windows and OS X and before 11.2.202.577 on Linux, Adobe AIR before 21.0.0.176, Adobe AIR SDK before 21.0.0.176, and Adobe AIR SDK & Compiler before 21.0.0.176 allow attackers to execute arbitrary code or cause a denial...

9.3CVSS9AI score0.53031EPSS

CVE•added 2016/06/16 2:59 p.m.•77 views

CVE-2016-4141

Unspecified vulnerability in Adobe Flash Player 21.0.0.242 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-083.

9.3CVSS8.9AI score0.02182EPSS

CVE•added 2016/09/14 6:59 p.m.•77 views

CVE-2016-4283

Adobe Flash Player before 18.0.0.375 and 19.x through 23.x before 23.0.0.162 on Windows and OS X and before 11.2.202.635 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-4274, CVE-20...

9.3CVSS9.1AI score0.26204EPSS

CVE•added 2016/09/14 6:59 p.m.•77 views

CVE-2016-6922

9.3CVSS9.1AI score0.26204EPSS

CVE•added 2017/01/11 4:59 a.m.•77 views

CVE-2017-2935

Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable heap overflow vulnerability when processing the Flash Video container file format. Successful exploitation could lead to arbitrary code execution.

9.3CVSS8.9AI score0.34466EPSS

CVE•added 2017/02/15 6:59 a.m.•77 views

CVE-2017-2984

Adobe Flash Player versions 24.0.0.194 and earlier have an exploitable heap overflow vulnerability in the h264 decoder routine. Successful exploitation could lead to arbitrary code execution.

9.3CVSS8.9AI score0.06731EPSS

CVE•added 2008/11/10 2:12 p.m.•76 views

CVE-2008-4820

Unspecified vulnerability in the Flash Player ActiveX control in Adobe Flash Player 9.0.124.0 and earlier on Windows allows attackers to obtain sensitive information via unknown vectors.

7.1CVSS5.7AI score0.03951EPSS

CVE•added 2009/02/26 4:17 p.m.•76 views

CVE-2009-0519

Unspecified vulnerability in Adobe Flash Player 9.x before 9.0.159.0 and 10.x before 10.0.22.87 allows remote attackers to cause a denial of service (browser crash) or possibly execute arbitrary code via a crafted Shockwave Flash (aka .swf) file.

9.3CVSS7.9AI score0.17783EPSS

CVE•added 2010/06/15 6:0 p.m.•76 views

CVE-2010-2175

Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-2160, CVE-2010-2165, CVE-2010-2166,...

9.3CVSS9.9AI score0.01631EPSS

CVE•added 2010/06/15 6:0 p.m.•76 views

CVE-2010-2184

Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-2160, CVE-2010-2165, CVE-2010-2166,...

9.3CVSS9.9AI score0.01631EPSS

CVE•added 2010/08/11 6:47 p.m.•76 views

CVE-2010-2214

Adobe Flash Player before 9.0.280 and 10.x before 10.1.82.76, and Adobe AIR before 2.0.3, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2010-0209, CVE-2010-2213, and CVE-2010-2216.

9.3CVSS9.7AI score0.02297EPSS

CVE•added 2010/11/07 10:0 p.m.•76 views

CVE-2010-3646

Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability...

9.3CVSS9.7AI score0.03964EPSS

CVE•added 2011/08/10 10:55 p.m.•76 views

CVE-2011-2417

10CVSS9AI score0.89835EPSS

CVE•added 2011/11/11 4:55 p.m.•76 views

CVE-2011-2453

Adobe Flash Player before 10.3.183.11 and 11.x before 11.1.102.55 on Windows, Mac OS X, Linux, and Solaris and before 11.1.102.59 on Android, and Adobe AIR before 3.1.0.4880, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a diffe...

10CVSS9.7AI score0.01769EPSS

CVE•added 2012/02/16 7:55 p.m.•76 views

CVE-2012-0751

The ActiveX control in Adobe Flash Player before 10.3.183.15 and 11.x before 11.1.102.62 on Windows allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.

10CVSS7.6AI score0.04236EPSS

CVE•added 2013/02/12 8:55 p.m.•76 views

CVE-2013-1367

Buffer overflow in Adobe Flash Player before 10.3.183.63 and 11.x before 11.6.602.168 on Windows, before 10.3.183.61 and 11.x before 11.6.602.167 on Mac OS X, before 10.3.183.61 and 11.x before 11.2.202.270 on Linux, before 11.1.111.43 on Android 2.x and 3.x, and before 11.1.115.47 on Android 4.x; ...

10CVSS7.7AI score0.04189EPSS

CVE•added 2015/07/09 4:59 p.m.•76 views

CVE-2015-3137

Use-after-free vulnerability in Adobe Flash Player before 13.0.0.302 and 14.x through 18.x before 18.0.0.203 on Windows and OS X and before 11.2.202.481 on Linux, Adobe AIR before 18.0.0.180, Adobe AIR SDK before 18.0.0.180, and Adobe AIR SDK & Compiler before 18.0.0.180 allows attackers to execute...

10CVSS7.5AI score0.68245EPSS

CVE•added 2015/11/11 12:59 p.m.•76 views

CVE-2015-7658

9.3CVSS7.5AI score0.74587EPSS

CVE•added 2015/11/11 12:59 p.m.•76 views

CVE-2015-7660

9.3CVSS7.5AI score0.74587EPSS

CVE•added 2015/11/11 1:0 p.m.•76 views

CVE-2015-8046

10CVSS7.7AI score0.74587EPSS

CVE•added 2015/12/10 5:59 a.m.•76 views

CVE-2015-8071

10CVSS9.2AI score0.60453EPSS

CVE•added 2015/12/10 5:59 a.m.•76 views

CVE-2015-8426

10CVSS9.2AI score0.60453EPSS

CVE•added 2015/12/28 11:59 p.m.•76 views

CVE-2015-8650

9.3CVSS9.1AI score0.49456EPSS

CVE•added 2016/03/12 3:59 p.m.•76 views

CVE-2016-0998

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21.0.0.182 on Windows and OS X and before 11.2.202.577 on Linux, Adobe AIR before 21.0.0.176, Adobe AIR SDK before 21.0.0.176, and Adobe AIR SDK & Compiler before 21.0.0.176 allows attackers to execute...

9.3CVSS9AI score0.50072EPSS

CVE•added 2016/06/16 2:59 p.m.•76 views

CVE-2016-4135

9.3CVSS8.9AI score0.35226EPSS

CVE•added 2016/07/13 1:59 a.m.•76 views

CVE-2016-4182

Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-4172, CVE-20...

9.3CVSS9.3AI score0.44744EPSS

CVE•added 2016/09/14 6:59 p.m.•76 views

CVE-2016-4282

9.3CVSS9.1AI score0.26204EPSS

CVE•added 2017/12/13 9:29 p.m.•76 views

CVE-2017-11305

A regression affecting Adobe Flash Player version 27.0.0.187 (and earlier versions) causes the unintended reset of the global settings preference file when a user clears browser data.

6.5CVSS6.4AI score0.0247EPSS

CVE•added 2017/01/11 4:59 a.m.•76 views

CVE-2017-2936

Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable use after free vulnerability in the ActionScript FileReference class. Successful exploitation could lead to arbitrary code execution.

9.3CVSS8.8AI score0.01578EPSS

CVE•added 2017/01/11 4:59 a.m.•76 views

CVE-2017-2937

Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable use after free vulnerability in the ActionScript FileReference class, when using class inheritance. Successful exploitation could lead to arbitrary code execution.

9.3CVSS8.8AI score0.012EPSS

CVE•added 2017/02/15 6:59 a.m.•76 views

CVE-2017-2982

Adobe Flash Player versions 24.0.0.194 and earlier have an exploitable use after free vulnerability in a routine related to player shutdown. Successful exploitation could lead to arbitrary code execution.

9.3CVSS8.8AI score0.01322EPSS

Total number of security vulnerabilities1067