CVSS: 10.0EPSS: 26%CPEs: 33EXPL: 0CVE-2016-4171 – Adobe Flash Player Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2016-4171
16 Jun 2016 — Unspecified vulnerability in Adobe Flash Player 21.0.0.242 and earlier allows remote attackers to execute arbitrary code via unknown vectors, as exploited in the wild in June 2016. Vulnerabilidad no especificada en Adobe Flash Player 21.0.0.242 y versiones anteriores permite a atacantes remotos ejecutar código arbitrario a través de vectores desconocidos, tal como se ha explotado activamente en junio de 2016. The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash Player web browser plug-... • http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00031.html •
CVSS: 8.1EPSS: 1%CPEs: 287EXPL: 0CVE-2012-4171
https://notcve.org/view.php?id=CVE-2012-4171
31 Aug 2012 — Adobe Flash Player before 10.3.183.23 and 11.x before 11.4.402.265 on Windows and Mac OS X, before 10.3.183.23 and 11.x before 11.2.202.238 on Linux, before 11.1.111.16 on Android 2.x and 3.x, and before 11.1.115.17 on Android 4.x; Adobe AIR before 3.4.0.2540; and Adobe AIR SDK before 3.4.0.2540 allow attackers to cause a denial of service (application crash) by leveraging a logic error during handling of Firefox dialogs. Adobe Flash Player anterior a v10.3.183.23 y v11.x anterior a v11.4.402.265 en Windows... • http://www.adobe.com/support/security/bulletins/apsb12-19.html •
CVSS: 10.0EPSS: 10%CPEs: 133EXPL: 0CVE-2012-0768 – flash-plugin: code execution flaw (APSB12-05)
https://notcve.org/view.php?id=CVE-2012-0768
05 Mar 2012 — The Matrix3D component in Adobe Flash Player before 10.3.183.16 and 11.x before 11.1.102.63 on Windows, Mac OS X, Linux, and Solaris; before 11.1.111.7 on Android 2.x and 3.x; and before 11.1.115.7 on Android 4.x allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors. El componente Matrix3D en Adobe Flash Player anterior a v10.3.183.16 y v11.x anterior a v11.1.102.63 en Windows, Mac OS X, Linux, y Solaris; anteriores a v11.1.111.7 en Android 2.x y... • http://lists.opensuse.org/opensuse-security-announce/2012-03/msg00005.html • CWE-399: Resource Management Errors •
CVSS: 7.5EPSS: 1%CPEs: 133EXPL: 0CVE-2012-0769 – flash-plugin: information disclosure flaw (APSB12-05)
https://notcve.org/view.php?id=CVE-2012-0769
05 Mar 2012 — Adobe Flash Player before 10.3.183.16 and 11.x before 11.1.102.63 on Windows, Mac OS X, Linux, and Solaris; before 11.1.111.7 on Android 2.x and 3.x; and before 11.1.115.7 on Android 4.x does not properly handle integers, which allows attackers to obtain sensitive information via unspecified vectors. Adobe Flash Player anterior a v10.3.183.16 y v11.x anteriores a v11.1.102.63 para Windows, Mac OS X, Linux, y Solaris; anteriores a v11.1.111.7 en Android v2.x y v3.x; y anteriores a v11.1.115.7 en Android v4.x... • http://lists.opensuse.org/opensuse-security-announce/2012-03/msg00005.html • CWE-189: Numeric Errors •
CVSS: 9.8EPSS: 1%CPEs: 62EXPL: 0CVE-2010-0209 – flash-plugin: multiple security flaws (APSB10-16)
https://notcve.org/view.php?id=CVE-2010-0209
11 Aug 2010 — Adobe Flash Player before 9.0.280 and 10.x before 10.1.82.76, and Adobe AIR before 2.0.3, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2010-2213, CVE-2010-2214, and CVE-2010-2216. Adobe Flash Player anterior a v9.0.280 y v10.x anterior a v10.1.82.76, y Adobe AIR anterior a v2.0.3, permite a atacantes ejecutar código de su elección o causar una denegación de servicio (corrupción de memoria) a través de ... • http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 9.8EPSS: 2%CPEs: 62EXPL: 0CVE-2010-2213 – flash-plugin: multiple security flaws (APSB10-16)
https://notcve.org/view.php?id=CVE-2010-2213
11 Aug 2010 — Adobe Flash Player before 9.0.280 and 10.x before 10.1.82.76, and Adobe AIR before 2.0.3, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2010-0209, CVE-2010-2214, and CVE-2010-2216. Adobe Flash Player anterior v9.0.280 y v10.x anterior v10.1.82.76, y Adobe AIR anterior v2.0.3, permite a atacantes ejecutar código de su elección o causar una denegación de servicio (corrupción de memoria) a través de vector... • http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 9.8EPSS: 1%CPEs: 62EXPL: 0CVE-2010-2214 – flash-plugin: multiple security flaws (APSB10-16)
https://notcve.org/view.php?id=CVE-2010-2214
11 Aug 2010 — Adobe Flash Player before 9.0.280 and 10.x before 10.1.82.76, and Adobe AIR before 2.0.3, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2010-0209, CVE-2010-2213, and CVE-2010-2216. Adobe Flash Player anterior a v9.0.280 y v10.x anterior a v10.1.82.76, y Adobe AIR anterior a v2.0.3, permite a atacantes ejecutar código de su elección o provocar una denegación de servicio (consumo de memoria) a través de v... • http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 9.1EPSS: 1%CPEs: 62EXPL: 0CVE-2010-2215 – flash-plugin: multiple security flaws (APSB10-16)
https://notcve.org/view.php?id=CVE-2010-2215
11 Aug 2010 — Adobe Flash Player before 9.0.280 and 10.x before 10.1.82.76, and Adobe AIR before 2.0.3, allows attackers to trick a user into (1) selecting a link or (2) completing a dialog, related to a "click-jacking" issue. Adobe Flash Player anterior v9.0.280 y v10.x anterior v10.1.82.76, y Adobe AIR anterior v2.0.3, permite a atacantes engañar a usuarios en (1) la selección de un enlace o (2) completar un diálogo, relacionado con el tema "click-jacking". • http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html •
CVSS: 9.8EPSS: 1%CPEs: 62EXPL: 0CVE-2010-2216 – flash-plugin: multiple security flaws (APSB10-16)
https://notcve.org/view.php?id=CVE-2010-2216
11 Aug 2010 — Adobe Flash Player before 9.0.280 and 10.x before 10.1.82.76, and Adobe AIR before 2.0.3, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2010-0209, CVE-2010-2213, and CVE-2010-2214. Adobe Flash Player anterior v9.0.280 y v10.x anterior v10.1.82.76, y Adobe AIR anterior v2.0.3, permite a atacantes ejecutar código de su elección o causar una denegación de servicio (caída memoria) a través de vectores no es... • http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 9.3EPSS: 17%CPEs: 38EXPL: 0CVE-2009-0519 – flash-plugin: Input validation flaw (DoS)
https://notcve.org/view.php?id=CVE-2009-0519
26 Feb 2009 — Unspecified vulnerability in Adobe Flash Player 9.x before 9.0.159.0 and 10.x before 10.0.22.87 allows remote attackers to cause a denial of service (browser crash) or possibly execute arbitrary code via a crafted Shockwave Flash (aka .swf) file. Vulnerabilidad no especificada en Adobe Flash Player 9.x anteriores a v9.0.159.0 y v10.x anteriores a v10.0.22.87, permiten a atacantes remotos provocar una denegación de servicio (caída del navegador) o posiblemente ejecutar código de su elección a través de un fi... • http://isc.sans.org/diary.html?storyid=5929 • CWE-20: Improper Input Validation •