CVSS: 8.8EPSS: 0%CPEs: 13EXPL: 1CVE-2017-3000 – flash-plugin: multiple code execution issues fixed in APSB17-07
https://notcve.org/view.php?id=CVE-2017-3000
Adobe Flash Player versions 24.0.0.221 and earlier have a vulnerability in the random number generator used for constant blinding. Successful exploitation could lead to information disclosure. Adobe Flash Player versión 24.0.0.221 y versiones anteriores tienen una vulnerabilidad en el generador de números aleatorios utilizado para el cegamiento constante. Una explotación exitosa podría resultar en divulgación de información. • https://github.com/dangokyo/CVE-2017-3000 http://rhn.redhat.com/errata/RHSA-2017-0526.html http://www.securityfocus.com/bid/96862 http://www.securitytracker.com/id/1037994 https://helpx.adobe.com/security/products/flash-player/apsb17-07.html https://security.gentoo.org/glsa/201703-02 https://access.redhat.com/security/cve/CVE-2017-3000 https://bugzilla.redhat.com/show_bug.cgi?id=1432200 •
CVSS: 9.3EPSS: 1%CPEs: 13EXPL: 0CVE-2017-3001 – Adobe Flash MovieClip transform Use-After-Free Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2017-3001
Adobe Flash Player versions 24.0.0.221 and earlier have an exploitable use after free vulnerability related to garbage collection in the ActionScript 2 VM. Successful exploitation could lead to arbitrary code execution. Adobe Flash Player versión 24.0.0.221 y versiones anteriores tienen una vulnerabilidad de uso después de liberación de memoria explotable relacionada con la recolección de basura en la ActionScript 2 VM. Una explotación exitosa puede resultar en ejecución arbitraria de código.. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Flash. • http://rhn.redhat.com/errata/RHSA-2017-0526.html http://www.securityfocus.com/bid/96861 http://www.securitytracker.com/id/1037994 https://helpx.adobe.com/security/products/flash-player/apsb17-07.html https://security.gentoo.org/glsa/201703-02 https://access.redhat.com/security/cve/CVE-2017-3001 https://bugzilla.redhat.com/show_bug.cgi?id=1432200 • CWE-416: Use After Free •
CVSS: 9.3EPSS: 1%CPEs: 13EXPL: 0CVE-2017-3002 – flash-plugin: multiple code execution issues fixed in APSB17-07
https://notcve.org/view.php?id=CVE-2017-3002
Adobe Flash Player versions 24.0.0.221 and earlier have an exploitable use after free vulnerability in the ActionScript2 TextField object related to the variable property. Successful exploitation could lead to arbitrary code execution. Adobe Flash Player versión 24.0.0.221 y versiones anteriores tienen una vulnerabilidad de uso después de liberación de memoria explotable en el objeto ActionScript2 TextField relacionado con la propiedad variable. Una explotación exitosa puede resultar en ejecución arbitraria de código. • http://rhn.redhat.com/errata/RHSA-2017-0526.html http://www.securityfocus.com/bid/96861 http://www.securitytracker.com/id/1037994 https://helpx.adobe.com/security/products/flash-player/apsb17-07.html https://security.gentoo.org/glsa/201703-02 https://access.redhat.com/security/cve/CVE-2017-3002 https://bugzilla.redhat.com/show_bug.cgi?id=1432200 • CWE-416: Use After Free •
CVSS: 9.3EPSS: 1%CPEs: 13EXPL: 0CVE-2017-3003 – flash-plugin: multiple code execution issues fixed in APSB17-07
https://notcve.org/view.php?id=CVE-2017-3003
Adobe Flash Player versions 24.0.0.221 and earlier have an exploitable use after free vulnerability related to an interaction between the privacy user interface and the ActionScript 2 Camera object. Successful exploitation could lead to arbitrary code execution. Adobe Flash Player versión 24.0.0.221 y versiones anteriores tienen una vulnerabilidad de uso después de liberación de memoria explotable relacionado con una interacción entre la interfaz de privacidad del usuario y el objeto ActionScript 2 Camera. Una explotación exitosa puede resultar en ejecución arbitraria de código.. • http://rhn.redhat.com/errata/RHSA-2017-0526.html http://www.securityfocus.com/bid/96861 http://www.securitytracker.com/id/1037994 https://helpx.adobe.com/security/products/flash-player/apsb17-07.html https://security.gentoo.org/glsa/201703-02 https://access.redhat.com/security/cve/CVE-2017-3003 https://bugzilla.redhat.com/show_bug.cgi?id=1432200 • CWE-416: Use After Free •
CVSS: 9.3EPSS: 1%CPEs: 13EXPL: 0CVE-2017-2982 – flash-plugin: multiple code execution issues fixed in APSB17-04
https://notcve.org/view.php?id=CVE-2017-2982
Adobe Flash Player versions 24.0.0.194 and earlier have an exploitable use after free vulnerability in a routine related to player shutdown. Successful exploitation could lead to arbitrary code execution. Adobe Flash Player, versiones 24.0.0.194 y anteriores, tienen una vulnerabilidad explotable de uso después de liberación en una rutina relacionada con el apagado del reproductor. La explotación exitosa podría conducir a la ejecución de código arbitrario. • http://rhn.redhat.com/errata/RHSA-2017-0275.html http://www.securityfocus.com/bid/96199 http://www.securitytracker.com/id/1037815 https://helpx.adobe.com/security/products/flash-player/apsb17-04.html https://security.gentoo.org/glsa/201702-20 https://access.redhat.com/security/cve/CVE-2017-2982 https://bugzilla.redhat.com/show_bug.cgi?id=1422237 • CWE-416: Use After Free •