Flash Player Security Vulnerabilities and Issues — Flash Player CVE List

Lucene search

AdobeFlash Player

13 matches found

CVE•added 2017/01/11 4:59 a.m.•93 views

CVE-2017-2930

Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable memory corruption vulnerability due to a concurrency error when manipulating a display list. Successful exploitation could lead to arbitrary code execution.

9.3CVSS8.9AI score0.73562EPSS

CVE•added 2017/01/11 4:59 a.m.•81 views

CVE-2017-2932

Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable use after free vulnerability in the ActionScript MovieClip class. Successful exploitation could lead to arbitrary code execution.

9.3CVSS8.8AI score0.40865EPSS

CVE•added 2017/01/11 4:59 a.m.•78 views

CVE-2017-2927

Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable heap overflow vulnerability when processing Adobe Texture Format files. Successful exploitation could lead to arbitrary code execution.

9.3CVSS8.9AI score0.01308EPSS

CVE•added 2017/01/11 4:59 a.m.•78 views

CVE-2017-2938

Adobe Flash Player versions 24.0.0.186 and earlier have a security bypass vulnerability related to handling TCP connections.

6.5CVSS7.2AI score0.0103EPSS

CVE•added 2017/01/11 4:59 a.m.•77 views

CVE-2017-2935

Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable heap overflow vulnerability when processing the Flash Video container file format. Successful exploitation could lead to arbitrary code execution.

9.3CVSS8.9AI score0.34466EPSS

CVE•added 2017/01/11 4:59 a.m.•76 views

CVE-2017-2936

Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable use after free vulnerability in the ActionScript FileReference class. Successful exploitation could lead to arbitrary code execution.

9.3CVSS8.8AI score0.01578EPSS

CVE•added 2017/01/11 4:59 a.m.•76 views

CVE-2017-2937

Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable use after free vulnerability in the ActionScript FileReference class, when using class inheritance. Successful exploitation could lead to arbitrary code execution.

9.3CVSS8.8AI score0.012EPSS

CVE•added 2017/01/11 4:59 a.m.•75 views

CVE-2017-2934

Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable heap overflow vulnerability when parsing Adobe Texture Format files. Successful exploitation could lead to arbitrary code execution.

9.3CVSS8.9AI score0.34466EPSS

CVE•added 2017/01/11 4:59 a.m.•73 views

CVE-2017-2926

Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable memory corruption vulnerability related to processing of atoms in MP4 files. Successful exploitation could lead to arbitrary code execution.

9.3CVSS8.9AI score0.01067EPSS

CVE•added 2017/01/11 4:59 a.m.•73 views

CVE-2017-2928

Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable memory corruption vulnerability related to setting visual mode effects. Successful exploitation could lead to arbitrary code execution.

9.3CVSS8.9AI score0.01061EPSS

CVE•added 2017/01/11 4:59 a.m.•70 views

CVE-2017-2933

Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable heap overflow vulnerability related to texture compression. Successful exploitation could lead to arbitrary code execution.

9.3CVSS8.9AI score0.34466EPSS

CVE•added 2017/01/11 4:59 a.m.•69 views

CVE-2017-2931

Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable memory corruption vulnerability related to the parsing of SWF metadata. Successful exploitation could lead to arbitrary code execution.

9.3CVSS8.9AI score0.40865EPSS

CVE•added 2017/01/11 4:59 a.m.•67 views

CVE-2017-2925

Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable memory corruption vulnerability in the JPEG XR codec. Successful exploitation could lead to arbitrary code execution.

9.3CVSS8.9AI score0.01061EPSS