Flash Player@* Security Vulnerabilities and Issues — Flash Player@* CVE List

Lucene search

AdobeFlash Player*

61 matches found

CVE•added 2011/03/15 5:55 p.m.•1049 views

CVE-2011-0609

Unspecified vulnerability in Adobe Flash Player 10.2.154.13 and earlier on Windows, Mac OS X, Linux, and Solaris; 10.1.106.16 and earlier on Android; Adobe AIR 2.5.1 and earlier; and Authplay.dll (aka AuthPlayLib.bundle) in Adobe Reader and Acrobat 9.x through 9.4.2 and 10.x through 10.0.1 on Windo...

9.3CVSS8.9AI score0.92398EPSS

CVE•added 2011/04/13 2:55 p.m.•976 views

CVE-2011-0611

Adobe Flash Player before 10.2.154.27 on Windows, Mac OS X, Linux, and Solaris and 10.2.156.12 and earlier on Android; Adobe AIR before 2.6.19140; and Authplay.dll (aka AuthPlayLib.bundle) in Adobe Reader 9.x before 9.4.4 and 10.x through 10.0.1 on Windows, Adobe Reader 9.x before 9.4.4 and 10.x be...

9.3CVSS8.8AI score0.93736EPSS

CVE•added 2011/08/10 10:55 p.m.•128 views

CVE-2011-2140

Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and Solaris and before 10.3.186.3 on Android, and Adobe AIR before 2.7.1 on Windows and Mac OS X and before 2.7.1.1961 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspec...

10CVSS9AI score0.89835EPSS

CVE•added 2011/08/15 9:55 p.m.•93 views

CVE-2011-2424

Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and Solaris and before 10.3.186.3 on Android, and Adobe AIR before 2.7.1 on Windows and Mac OS X and before 2.7.1.1961 on Android, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via...

9.3CVSS8.8AI score0.13758EPSS

CVE•added 2011/06/16 11:55 p.m.•91 views

CVE-2011-2110

Adobe Flash Player before 10.3.181.26 on Windows, Mac OS X, Linux, and Solaris, and 10.3.185.23 and earlier on Android, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, as exploited in the wild in June 2011.

10CVSS8.9AI score0.9143EPSS

CVE•added 2011/08/10 9:55 p.m.•81 views

CVE-2011-2130

Buffer overflow in Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and Solaris and before 10.3.186.3 on Android, and Adobe AIR before 2.7.1 on Windows and Mac OS X and before 2.7.1.1961 on Android, allows attackers to execute arbitrary code via unspecified vectors, a different vul...

10CVSS9AI score0.13356EPSS

CVE•added 2011/11/11 4:55 p.m.•75 views

CVE-2011-2453

Adobe Flash Player before 10.3.183.11 and 11.x before 11.1.102.55 on Windows, Mac OS X, Linux, and Solaris and before 11.1.102.59 on Android, and Adobe AIR before 3.1.0.4880, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a diffe...

10CVSS9.7AI score0.01769EPSS

CVE•added 2011/08/10 10:55 p.m.•74 views

CVE-2011-2425

10CVSS9AI score0.89835EPSS

CVE•added 2011/08/10 10:55 p.m.•73 views

CVE-2011-2135

10CVSS9AI score0.89835EPSS

CVE•added 2011/08/10 10:55 p.m.•72 views

CVE-2011-2417

10CVSS9AI score0.89835EPSS

CVE•added 2011/08/10 9:55 p.m.•70 views

CVE-2011-2134

10CVSS9AI score0.13356EPSS

CVE•added 2011/05/13 10:55 p.m.•69 views

CVE-2011-0619

Adobe Flash Player before 10.3.181.14 on Windows, Mac OS X, Linux, and Solaris and before 10.3.185.21 on Android allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2011-0620, CVE-2011-0621, and CVE-...

9.3CVSS8.8AI score0.05847EPSS

CVE•added 2011/06/09 2:38 a.m.•69 views

CVE-2011-2107

Cross-site scripting (XSS) vulnerability in Adobe Flash Player before 10.3.181.22 on Windows, Mac OS X, Linux, and Solaris, and 10.3.185.22 and earlier on Android, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, related to a "universal cross-site scripting vu...

4.3CVSS7AI score0.01077EPSS

CVE•added 2011/05/13 10:55 p.m.•68 views

CVE-2011-0621

9.3CVSS8.8AI score0.05847EPSS

CVE•added 2011/08/10 10:55 p.m.•68 views

CVE-2011-2414

10CVSS9AI score0.13356EPSS

CVE•added 2011/08/10 10:55 p.m.•68 views

CVE-2011-2416

Integer overflow in Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and Solaris and before 10.3.186.3 on Android, and Adobe AIR before 2.7.1 on Windows and Mac OS X and before 2.7.1.1961 on Android, allows attackers to execute arbitrary code via unspecified vectors, a different vu...

10CVSS9AI score0.04528EPSS

CVE•added 2011/11/11 4:55 p.m.•68 views

CVE-2011-2454

10CVSS9.7AI score0.01769EPSS

CVE•added 2011/05/13 10:55 p.m.•67 views

CVE-2011-0623

Adobe Flash Player before 10.3.181.14 on Windows, Mac OS X, Linux, and Solaris and before 10.3.185.21 on Android allows attackers to execute arbitrary code via unspecified vectors, related to a "bounds checking" issue, a different vulnerability than CVE-2011-0624, CVE-2011-0625, and CVE-2011-0626.

9.3CVSS8.7AI score0.04606EPSS

CVE•added 2011/09/22 3:38 a.m.•67 views

CVE-2011-2426

Stack-based buffer overflow in the ActionScript Virtual Machine (AVM) component in Adobe Flash Player before 10.3.183.10 on Windows, Mac OS X, Linux, and Solaris, and before 10.3.186.7 on Android, allows remote attackers to execute arbitrary code via unspecified vectors.

9.3CVSS9AI score0.11685EPSS

CVE•added 2011/09/22 3:38 a.m.•67 views

CVE-2011-2427

Stack-based buffer overflow in the ActionScript Virtual Machine (AVM) component in Adobe Flash Player before 10.3.183.10 on Windows, Mac OS X, Linux, and Solaris, and before 10.3.186.7 on Android, allows attackers to execute arbitrary code or cause a denial of service via unspecified vectors.

9.3CVSS9AI score0.02417EPSS

CVE•added 2011/11/11 4:55 p.m.•67 views

CVE-2011-2458

Adobe Flash Player before 10.3.183.11 and 11.x before 11.1.102.55 on Windows, Mac OS X, Linux, and Solaris and before 11.1.102.59 on Android, and Adobe AIR before 3.1.0.4880, when Internet Explorer is used, allows remote attackers to bypass the cross-domain policy via a crafted web site.

9.3CVSS9AI score0.01019EPSS

CVE•added 2011/08/10 10:55 p.m.•66 views

CVE-2011-2138

10CVSS9AI score0.04528EPSS

CVE•added 2011/09/22 3:38 a.m.•66 views

CVE-2011-2430

Adobe Flash Player before 10.3.183.10 on Windows, Mac OS X, Linux, and Solaris, and before 10.3.186.7 on Android, allows remote attackers to execute arbitrary code via crafted streaming media, related to a "logic error vulnerability."

9.3CVSS8.8AI score0.0662EPSS

CVE•added 2011/11/11 4:55 p.m.•66 views

CVE-2011-2445

10CVSS9.7AI score0.01769EPSS

CVE•added 2011/11/11 4:55 p.m.•66 views

CVE-2011-2452

10CVSS9.7AI score0.01769EPSS

CVE•added 2011/11/11 4:55 p.m.•66 views

CVE-2011-2455

10CVSS9.7AI score0.01769EPSS

CVE•added 2011/08/10 10:55 p.m.•65 views

CVE-2011-2136

10CVSS9AI score0.04528EPSS

CVE•added 2011/08/10 10:55 p.m.•65 views

CVE-2011-2139

Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and Solaris and before 10.3.186.3 on Android, and Adobe AIR before 2.7.1 on Windows and Mac OS X and before 2.7.1.1961 on Android, allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via unspecif...

6.4CVSS8.3AI score0.02879EPSS

CVE•added 2011/11/11 4:55 p.m.•65 views

CVE-2011-2450

10CVSS9.5AI score0.03037EPSS

CVE•added 2011/11/11 4:55 p.m.•65 views

CVE-2011-2460

10CVSS9.7AI score0.01769EPSS

CVE•added 2011/05/13 10:55 p.m.•64 views

CVE-2011-0618

Integer overflow in Adobe Flash Player before 10.3.181.14 on Windows, Mac OS X, Linux, and Solaris and before 10.3.185.21 on Android allows attackers to execute arbitrary code via unspecified vectors.

9.3CVSS8.8AI score0.06126EPSS

CVE•added 2011/05/13 10:55 p.m.•64 views

CVE-2011-0624

9.3CVSS8.7AI score0.04606EPSS

CVE•added 2011/08/10 9:55 p.m.•64 views

CVE-2011-2137

10CVSS9AI score0.13356EPSS

CVE•added 2011/11/11 4:55 p.m.•64 views

CVE-2011-2451

10CVSS9.7AI score0.01769EPSS

CVE•added 2011/11/11 4:55 p.m.•64 views

CVE-2011-2456

Buffer overflow in Adobe Flash Player before 10.3.183.11 and 11.x before 11.1.102.55 on Windows, Mac OS X, Linux, and Solaris and before 11.1.102.59 on Android, and Adobe AIR before 3.1.0.4880, allows attackers to execute arbitrary code via unspecified vectors.

10CVSS9.6AI score0.05056EPSS

CVE•added 2011/05/13 10:55 p.m.•63 views

CVE-2011-0622

9.3CVSS8.8AI score0.05847EPSS

CVE•added 2011/08/10 10:55 p.m.•63 views

CVE-2011-2415

10CVSS9AI score0.13356EPSS

CVE•added 2011/11/11 4:55 p.m.•63 views

CVE-2011-2459

10CVSS9.7AI score0.01769EPSS

CVE•added 2011/05/13 10:55 p.m.•62 views

CVE-2011-0625

9.3CVSS8.7AI score0.04606EPSS

CVE•added 2011/05/13 10:55 p.m.•62 views

CVE-2011-0626

9.3CVSS8.7AI score0.04606EPSS

CVE•added 2011/09/22 3:38 a.m.•62 views

CVE-2011-2428

Adobe Flash Player before 10.3.183.10 on Windows, Mac OS X, Linux, and Solaris, and before 10.3.186.7 on Android, allows attackers to execute arbitrary code or cause a denial of service (browser crash) via unspecified vectors, related to a "logic error issue."

9.3CVSS8.9AI score0.02882EPSS

CVE•added 2011/11/11 4:55 p.m.•62 views

CVE-2011-2457

Stack-based buffer overflow in Adobe Flash Player before 10.3.183.11 and 11.x before 11.1.102.55 on Windows, Mac OS X, Linux, and Solaris and before 11.1.102.59 on Android, and Adobe AIR before 3.1.0.4880, allows attackers to execute arbitrary code via unspecified vectors.

10CVSS9.7AI score0.05056EPSS

CVE•added 2011/02/10 4:0 p.m.•61 views

CVE-2011-0607

Adobe Flash Player before 10.2.152.26 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2011-0559, CVE-2011-0560, CVE-2011-0561, CVE-2011-0571, CVE-2011-0572, CVE-2011-0573, CVE-2011-0574, CVE-2011...

9.3CVSS9AI score0.13697EPSS

CVE•added 2011/05/13 10:55 p.m.•61 views

CVE-2011-0627

Adobe Flash Player before 10.3.181.14 on Windows, Mac OS X, Linux, and Solaris and before 10.3.185.21 on Android allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted Flash content, as possibly exploited in the wild in May 2011 by a Microsoft...

9.3CVSS8.7AI score0.0786EPSS

CVE•added 2011/02/10 4:0 p.m.•60 views

CVE-2011-0559

Adobe Flash Player before 10.2.152.26 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted parameters to an unspecified ActionScript method that cause a parameter to be used as an object pointer, a different vulnerability than CVE-2011-0560, CVE-20...

9.3CVSS9AI score0.13697EPSS

CVE•added 2011/02/10 4:0 p.m.•60 views

CVE-2011-0561

Adobe Flash Player before 10.2.152.26 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2011-0559, CVE-2011-0560, CVE-2011-0571, CVE-2011-0572, CVE-2011-0573, CVE-2011-0574, CVE-2011-0578, CVE-2011...

9.3CVSS9AI score0.13697EPSS

CVE•added 2011/05/13 10:55 p.m.•60 views

CVE-2011-0620

9.3CVSS8.8AI score0.05847EPSS

CVE•added 2011/09/22 3:38 a.m.•60 views

CVE-2011-2429

Adobe Flash Player before 10.3.183.10 on Windows, Mac OS X, Linux, and Solaris, and before 10.3.186.7 on Android, allows attackers to bypass intended access restrictions and obtain sensitive information via unspecified vectors, related to a "security control bypass."

5CVSS8.3AI score0.01913EPSS

CVE•added 2011/09/22 3:38 a.m.•60 views

CVE-2011-2444

Cross-site scripting (XSS) vulnerability in Adobe Flash Player before 10.3.183.10 on Windows, Mac OS X, Linux, and Solaris, and before 10.3.186.7 on Android, allows remote attackers to inject arbitrary web script or HTML via a crafted URL, related to a "universal cross-site scripting issue," as exp...

4.3CVSS6.9AI score0.0092EPSS

CVE•added 2011/02/10 4:0 p.m.•59 views

CVE-2011-0558

Integer overflow in Adobe Flash Player before 10.2.152.26 allows attackers to execute arbitrary code via a large array length value in the ActionScript method of the Function class.

9.3CVSS8.8AI score0.02515EPSS

Total number of security vulnerabilities61