CVSS: 8.1EPSS: 0%CPEs: 31EXPL: 0CVE-2016-1006 – flash-plugin: multiple code execution issues fixed in APSB16-10
https://notcve.org/view.php?id=CVE-2016-1006
08 Apr 2016 — Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to bypass the ASLR protection mechanism via JIT data. Adobe Flash Player en versiones anteriores a 18.0.0.343 y 19.x hasta la versión 21.x en versiones anteriores a 21.0.0.213 en Windows y OS X y en versiones anteriores a 11.2.202.616 en Linux permite a atacantes eludir el mecanismo de protección ASLR a través de datos JIT. The flash-plugin package contains a Moz... • http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00044.html •
CVSS: 9.3EPSS: 33%CPEs: 31EXPL: 2CVE-2016-1011 – Adobe Flash - MovieClip.duplicateMovieClip Use-After-Free
https://notcve.org/view.php?id=CVE-2016-1011
08 Apr 2016 — Use-after-free vulnerability in Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-1013, CVE-2016-1016, CVE-2016-1017, and CVE-2016-1031. Vulnerabilidad de uso después de liberación de memoria en Adobe Flash Player en versiones anteriores a 18.0.0.343 y 19.x hasta la versión 21.x en versiones anteriores a 21.0.0.213 en Wind... • https://packetstorm.news/files/id/137050 • CWE-416: Use After Free •
CVSS: 9.3EPSS: 1%CPEs: 31EXPL: 0CVE-2016-1012 – flash-plugin: multiple code execution issues fixed in APSB16-10
https://notcve.org/view.php?id=CVE-2016-1012
08 Apr 2016 — Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-1020, CVE-2016-1021, CVE-2016-1022, CVE-2016-1023, CVE-2016-1024, CVE-2016-1025, CVE-2016-1026, CVE-2016-1027, CVE-2016-1028, CVE-2016-1029, CVE-2016-1032, and CVE-2016-1033. Adobe Flash Player en versiones anteriores a 18.0.... • http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00044.html • CWE-787: Out-of-bounds Write •
CVSS: 9.3EPSS: 23%CPEs: 31EXPL: 1CVE-2016-1013 – Adobe Flash (Multiple Scripts) - Use-After-Free When Rendering Displays
https://notcve.org/view.php?id=CVE-2016-1013
08 Apr 2016 — Use-after-free vulnerability in Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-1011, CVE-2016-1016, CVE-2016-1017, and CVE-2016-1031. Vulnerabilidad de uso después de liberación de memoria en Adobe Flash Player en versiones anteriores a 18.0.0.343 y 19.x hasta la versión 21.x en versiones anteriores a 21.0.0.213 en Wind... • https://www.exploit-db.com/exploits/39778 • CWE-416: Use After Free •
CVSS: 7.3EPSS: 0%CPEs: 31EXPL: 1CVE-2016-1014 – flash-plugin: multiple code execution issues fixed in APSB16-10
https://notcve.org/view.php?id=CVE-2016-1014
08 Apr 2016 — Untrusted search path vulnerability in Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows local users to gain privileges via a Trojan horse resource in an unspecified directory. Vulnerabilidad de búsqueda de ruta no confiable en Adobe Flash Player en versiones anteriores a 18.0.0.343 y 19.x hasta la versión 21.x en versiones anteriores a 21.0.0.213 en Windows y OS X y en versiones anteriores a 11.2.202.616 en Linux permite... • https://packetstorm.news/files/id/137532 • CWE-426: Untrusted Search Path •
CVSS: 9.3EPSS: 10%CPEs: 31EXPL: 0CVE-2016-1015 – Adobe Flash AS2 NetConnection Type Confusion Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2016-1015
08 Apr 2016 — Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code by overriding NetConnection object properties to leverage an unspecified "type confusion," a different vulnerability than CVE-2016-1019. Adobe Flash Player en versiones anteriores a 18.0.0.343 y 19.x hasta la versión 21.x en versiones anteriores a 21.0.0.213 en Windows y OS X y en versiones anteriores a 11.2.202.616 en Linux permite a at... • http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00044.html • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 9.3EPSS: 40%CPEs: 31EXPL: 0CVE-2016-1016 – Adobe Flash AS2 Transform matrix Use-After-Free Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2016-1016
08 Apr 2016 — Use-after-free vulnerability in the Transform object implementation in Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code via a flash.geom.Matrix callback, a different vulnerability than CVE-2016-1011, CVE-2016-1013, CVE-2016-1017, and CVE-2016-1031. Vulnerabilidad de uso después de liberación de memoria en la implementación del objeto Transform en Adobe Flash Player en versiones anterio... • http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00044.html • CWE-416: Use After Free •
CVSS: 9.3EPSS: 40%CPEs: 31EXPL: 0CVE-2016-1017 – Adobe Flash AS2 LoadVars decode Use-After-Free Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2016-1017
08 Apr 2016 — Use-after-free vulnerability in the LoadVars.decode function in Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-1011, CVE-2016-1013, CVE-2016-1016, and CVE-2016-1031. Vulnerabilidad de uso después de liberación de memoria en la función LoadVars.decode en Adobe Flash Player en versiones anteriores a 18.0.0.343 y 19.x hast... • http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00044.html • CWE-416: Use After Free •
CVSS: 9.3EPSS: 3%CPEs: 31EXPL: 0CVE-2016-1018 – Adobe Flash JPEG-XR Parsing Stack Buffer Overflow Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2016-1018
08 Apr 2016 — Stack-based buffer overflow in Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code via crafted JPEG-XR data. Desbordamiento de buffer basado en pila en Adobe Flash Player en versiones anteriores a 18.0.0.343 y 19.x hasta la versión 21.x en versiones anteriores a 21.0.0.213 en Windows y OS X y en versiones anteriores a 11.2.202.616 en Linux permite a atacantes ejecutar código arbitrario a ... • http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00044.html • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 95%CPEs: 31EXPL: 0CVE-2016-1019 – Adobe Flash Player Arbitrary Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2016-1019
07 Apr 2016 — Adobe Flash Player 21.0.0.197 and earlier allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via unspecified vectors, as exploited in the wild in April 2016. Adobe Flash Player 21.0.0.197 y versiones anteriores permite a atacantes remotos provocar una denegación de servicio (caída de aplicación) o posiblemente ejecutar código arbitrario a través de vectores no especificados, según se ha explotado activamente en Abril de 2016. The flash-plugin package ... • http://blogs.adobe.com/psirt/?p=1330 •