CVSS: 9.3EPSS: 1%CPEs: 13EXPL: 0CVE-2018-4932 – flash-plugin: Remote Code Execution vulnerabilities (APSB18-08)
https://notcve.org/view.php?id=CVE-2018-4932
11 Apr 2018 — Adobe Flash Player versions 29.0.0.113 and earlier have an exploitable Use-After-Free vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the current user. Adobe Flash Player, en versiones 29.0.0.113 y anteriores, tiene una vulnerabilidad explotable de uso de memoria previamente liberada. Su explotación con éxito podría permitir la ejecución arbitraria de código en el contexto del usuario actual. The flash-plugin package contains a Mozilla Firefox compatible Adobe... • http://www.securityfocus.com/bid/103708 • CWE-416: Use After Free •
CVSS: 6.5EPSS: 0%CPEs: 13EXPL: 0CVE-2018-4933 – flash-plugin: Information Disclosure vulnerabilities (APSB18-08)
https://notcve.org/view.php?id=CVE-2018-4933
11 Apr 2018 — Adobe Flash Player versions 29.0.0.113 and earlier have an exploitable out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure. Adobe Flash Player, en versiones 29.0.0.113 y anteriores, tiene una vulnerabilidad explotable de lectura fuera de límites. Su explotación con éxito podría resultar en una divulgación de información. The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash Player web browser plug-in. • http://www.securityfocus.com/bid/103708 • CWE-125: Out-of-bounds Read •
CVSS: 9.3EPSS: 40%CPEs: 13EXPL: 2CVE-2018-4935 – Adobe Flash - Overflow in Slab Rendering
https://notcve.org/view.php?id=CVE-2018-4935
11 Apr 2018 — Adobe Flash Player versions 29.0.0.113 and earlier have an exploitable out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the current user. Adobe Flash Player, en versiones 29.0.0.113 y anteriores, tiene una vulnerabilidad explotable de escritura fuera de límites. Su explotación con éxito podría permitir la ejecución arbitraria de código en el contexto del usuario actual. The flash-plugin package contains a Mozilla Firefox compatible Adobe Fla... • https://packetstorm.news/files/id/147287 • CWE-787: Out-of-bounds Write •
CVSS: 9.3EPSS: 40%CPEs: 13EXPL: 2CVE-2018-4937 – Adobe Flash - Out-of-Bounds Write in blur Filtering
https://notcve.org/view.php?id=CVE-2018-4937
11 Apr 2018 — Adobe Flash Player versions 29.0.0.113 and earlier have an exploitable out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the current user. Adobe Flash Player, en versiones 29.0.0.113 y anteriores, tiene una vulnerabilidad explotable de escritura fuera de límites. Su explotación con éxito podría permitir la ejecución arbitraria de código en el contexto del usuario actual. The flash-plugin package contains a Mozilla Firefox compatible Adobe Fla... • https://packetstorm.news/files/id/147290 • CWE-787: Out-of-bounds Write •
CVSS: 9.3EPSS: 0%CPEs: 13EXPL: 0CVE-2018-4920 – flash-plugin: Type Confusion - remote code execution vulnerability (APSB18-05)
https://notcve.org/view.php?id=CVE-2018-4920
15 Mar 2018 — Adobe Flash Player versions 28.0.0.161 and earlier have an exploitable type confusion vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the current user. Adobe Flash Player, en versiones 28.0.0.161 y anteriores, tiene una vulnerabilidad explotable de confusión de tipos. Su explotación con éxito podría permitir la ejecución arbitraria de código en el contexto del usuario actual. The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash Player web... • http://www.securityfocus.com/bid/103383 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 9.3EPSS: 0%CPEs: 13EXPL: 0CVE-2018-4919 – flash-plugin: Use After Free - remote code execution vulnerability (APSB18-05)
https://notcve.org/view.php?id=CVE-2018-4919
15 Mar 2018 — Adobe Flash Player versions 28.0.0.161 and earlier have an exploitable use after free vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the current user. Adobe Flash Player, en versiones 28.0.0.161 y anteriores, tiene una vulnerabilidad explotable de uso de memoria previamente liberada. Su explotación con éxito podría permitir la ejecución arbitraria de código en el contexto del usuario actual. The flash-plugin package contains a Mozilla Firefox compatible Adobe... • http://www.securityfocus.com/bid/103385 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-416: Use After Free •
CVSS: 10.0EPSS: 1%CPEs: 16EXPL: 0CVE-2018-4877 – Adobe Flash Player QOSProvider attachMediaPlayerItemLoader Use-After-Free Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2018-4877
06 Feb 2018 — A use-after-free vulnerability was discovered in Adobe Flash Player before 28.0.0.161. This vulnerability occurs due to a dangling pointer in the Primetime SDK related to media player's quality of service functionality. A successful attack can lead to arbitrary code execution. Se ha descubierto una vulnerabilidad de uso de memoria previamente liberada en Adobe Flash Player, en versiones anteriores a la 28.0.0.161. Esta vulnerabilidad ocurre debido a un puntero pendiente en el SDK Primetime relacionado con l... • http://www.securityfocus.com/bid/102930 • CWE-416: Use After Free •
CVSS: 9.8EPSS: 97%CPEs: 16EXPL: 15CVE-2018-4878 – Adobe Flash Player Use-After-Free Vulnerability
https://notcve.org/view.php?id=CVE-2018-4878
06 Feb 2018 — A use-after-free vulnerability was discovered in Adobe Flash Player before 28.0.0.161. This vulnerability occurs due to a dangling pointer in the Primetime SDK related to media player handling of listener objects. A successful attack can lead to arbitrary code execution. This was exploited in the wild in January and February 2018. Se ha descubierto una vulnerabilidad de uso de memoria previamente liberada en Adobe Flash Player, en versiones anteriores a la 28.0.0.161. • https://packetstorm.news/files/id/147041 • CWE-416: Use After Free •
CVSS: 7.5EPSS: 4%CPEs: 16EXPL: 0CVE-2018-4871 – Adobe Flash ATF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2018-4871
09 Jan 2018 — An Out-of-bounds Read issue was discovered in Adobe Flash Player before 28.0.0.137. This vulnerability occurs because of computation that reads data that is past the end of the target buffer. The use of an invalid (out-of-range) pointer offset during access of internal data structure fields causes the vulnerability. A successful attack can lead to sensitive data exposure. Se ha descubierto un problema de lectura fuera de límites en Adobe Flash Player en versiones anteriores a la 28.0.0.137. • http://www.securityfocus.com/bid/102465 • CWE-125: Out-of-bounds Read •
CVSS: 6.5EPSS: 0%CPEs: 16EXPL: 0CVE-2017-11305 – flash-plugin: unintended reset of global settings preference file vulnerability (APSB17-42)
https://notcve.org/view.php?id=CVE-2017-11305
13 Dec 2017 — A regression affecting Adobe Flash Player version 27.0.0.187 (and earlier versions) causes the unintended reset of the global settings preference file when a user clears browser data. Una regresión que afecta a Adobe Flash Player en su versión 27.0.0.187 (y anteriores) provoca el restablecimiento accidental del archivo de preferencias de configuraciones globales cuando un usuario borra los datos del navegador. The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash Player web browser plug... • http://www.securityfocus.com/bid/102139 •