CVSS: 9.3EPSS: 0%CPEs: 13EXPL: 0CVE-2020-9746 – Exploitable NULL pointer deref could lead to arbitrary code execution
https://notcve.org/view.php?id=CVE-2020-9746
14 Oct 2020 — Adobe Flash Player version 32.0.0.433 (and earlier) are affected by an exploitable NULL pointer dereference vulnerability that could result in a crash and arbitrary code execution. Exploitation of this issue requires an attacker to insert malicious strings in an HTTP response that is by default delivered over TLS/SSL. Adobe Flash Player versión 32.0.0.433 (y anteriores) está afectada por una vulnerabilidad explotable de desreferencia del puntero NULL que podría causar un bloqueo y una ejecución de código ar... • https://helpx.adobe.com/security/products/flash-player/apsb20-58.html • CWE-476: NULL Pointer Dereference •
CVSS: 10.0EPSS: 1%CPEs: 13EXPL: 0CVE-2020-9633 – flash-plugin: Arbitrary Code Execution vulnerability (APSB20-30)
https://notcve.org/view.php?id=CVE-2020-9633
12 Jun 2020 — Adobe Flash Player Desktop Runtime 32.0.0.371 and earlier, Adobe Flash Player for Google Chrome 32.0.0.371 and earlier, and Adobe Flash Player for Microsoft Edge and Internet Explorer 32.0.0.330 and earlier have an use after free vulnerability. Successful exploitation could lead to arbitrary code execution. Adobe Flash Player Desktop Runtime versiones 32.0.0.371 y anteriores, Adobe Flash Player para Google Chrome versiones 32.0.0.371 y anteriores, y Adobe Flash Player para Microsoft Edge y Internet Explorer... • https://helpx.adobe.com/security/products/flash-player/apsb20-30.html • CWE-416: Use After Free •
CVSS: 9.3EPSS: 2%CPEs: 17EXPL: 0CVE-2020-3757 – flash-plugin: Arbitrary Code Execution vulnerability (APSB20-06)
https://notcve.org/view.php?id=CVE-2020-3757
13 Feb 2020 — Adobe Flash Player versions 32.0.0.321 and earlier, 32.0.0.314 and earlier, 32.0.0.321 and earlier, and 32.0.0.255 and earlier have a type confusion vulnerability. Successful exploitation could lead to arbitrary code execution. Adobe Flash Player versiones 32.0.0.321 y anteriores, 32.0.0.314 y anteriores, 32.0.0.321 y anteriores, y 32.0.0.255 y anteriores, presenta una vulnerabilidad de confusión de tipos. Una explotación con éxito podría conllevar a una ejecución de código arbitrario. The flash-plugin pack... • https://access.redhat.com/errata/RHSA-2020:0513 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 7.5EPSS: 0%CPEs: 21EXPL: 0CVE-2019-8075 – flash-plugin: Same origin policy bypass leading to information disclosure
https://notcve.org/view.php?id=CVE-2019-8075
27 Sep 2019 — Adobe Flash Player version 32.0.0.192 and earlier versions have a Same Origin Policy Bypass vulnerability. Successful exploitation could lead to Information Disclosure in the context of the current user. Adobe Flash Player versión 32.0.0.192 y versiones anteriores, presentan una vulnerabilidad de Omisión de la Política del Mismo Origen. Su explotación con éxito podría conllevar a una divulgación de información en el contexto del usuario actual. Multiple security issues were discovered in the Chromium web br... • https://chromereleases.googleblog.com/2020/11/stable-channel-update-for-desktop_17.html •
CVSS: 10.0EPSS: 1%CPEs: 13EXPL: 0CVE-2019-8069 – Adobe Flash Player navigateToURL Same-Origin Policy Bypass Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2019-8069
10 Sep 2019 — Adobe Flash Player 32.0.0.238 and earlier versions, 32.0.0.207 and earlier versions have a Same Origin Method Execution vulnerability. Successful exploitation could lead to Arbitrary Code Execution in the context of the current user. Adobe Flash Player versión 32.0.0.238 y anteriores, versión 32.0.0.207 y anteriores, presentan una vulnerabilidad de tipo Same Origin Method Execution. La explotación con éxito podría conllevar a la ejecución de código arbitrario en el contexto del usuario actual. This vulnerab... • https://helpx.adobe.com/security/products/flash-player/apsb19-46.html • CWE-346: Origin Validation Error •
CVSS: 10.0EPSS: 1%CPEs: 13EXPL: 0CVE-2019-8070 – Adobe Flash Player PSDK Use-After-Free Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2019-8070
10 Sep 2019 — Adobe Flash Player 32.0.0.238 and earlier versions, 32.0.0.207 and earlier versions have a Use after free vulnerability. Successful exploitation could lead to Arbitrary Code Execution in the context of the current user. Adobe Flash Player versión 32.0.0.238 y anteriores, versión 32.0.0.207 y anteriores, presentan una vulnerabilidad de uso de la memoria previamente liberada. La explotación con éxito podría conllevar a la ejecución de código arbitrario en el contexto del usuario actual. This vulnerability all... • https://helpx.adobe.com/security/products/flash-player/apsb19-46.html • CWE-416: Use After Free •
CVSS: 8.8EPSS: 1%CPEs: 18EXPL: 0CVE-2019-7845 – Adobe Flash Player LocalConnection Use-After-Free Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2019-7845
11 Jun 2019 — Adobe Flash Player versions 32.0.0.192 and earlier, 32.0.0.192 and earlier, and 32.0.0.192 and earlier have an use after free vulnerability. Successful exploitation could lead to arbitrary code execution. Las versiones de Adobe Flash Player 32.0.0.192 y anteriores 3.20.0.0.192 y anteriores tiene un use después de vulnerabilidad gratuita. La operación con éxito podría llevar a un código arbitrario de ejecución This vulnerability allows remote attackers to execute arbitrary code on affected installations of A... • https://access.redhat.com/errata/RHSA-2019:1476 • CWE-416: Use After Free •
CVSS: 9.3EPSS: 1%CPEs: 16EXPL: 0CVE-2019-7837 – Adobe Flash Player PSDK Use-After-Free Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2019-7837
15 May 2019 — Adobe Flash Player versions 32.0.0.171 and earlier, 32.0.0.171 and earlier, and 32.0.0.171 and earlier have a use after free vulnerability. Successful exploitation could lead to arbitrary code execution. Adobe Flash Player versiones 32.0.0.171 y anteriores, versiones 32.0.0.171 y anteriores, y versiones 32.0.0.171 y anteriores, tienen una vulnerabilidad de uso de memoria después de liberada. Su explotación exitosa podría llevar a la ejecución de código arbitrario. This vulnerability allows remote attackers ... • http://www.securityfocus.com/bid/108312 • CWE-416: Use After Free •
CVSS: 10.0EPSS: 1%CPEs: 13EXPL: 0CVE-2019-7096 – flash-plugin: Arbitrary Code Execution vulnerability (APSB19-19)
https://notcve.org/view.php?id=CVE-2019-7096
10 Apr 2019 — Adobe Flash Player versions 32.0.0.156 and earlier, 32.0.0.156 and earlier, and 32.0.0.156 and earlier have an use after free vulnerability. Successful exploitation could lead to arbitrary code execution. Las versiones de Adobe Flash Player 32.0.0.156 y anteriores, 32.0.0.156 y anteriores, y 32.0.0.156 y anteriores, tienen una vulnerabilidad de uso de memoria previamente liberada (use-after-free). Su explotación con éxito conllevaría a la ejecución de código arbitrario. The flash-plugin package contains a M... • https://helpx.adobe.com/security/products/flash-player/apsb19-19.html • CWE-416: Use After Free •
CVSS: 7.5EPSS: 0%CPEs: 13EXPL: 0CVE-2019-7108 – Adobe Flash Player Filter Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2019-7108
10 Apr 2019 — Adobe Flash Player versions 32.0.0.156 and earlier, 32.0.0.156 and earlier, and 32.0.0.156 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure . Las versiones de Adobe Flash Player 32.0.0.156 y anteriores, versión 32.0.0.156 y anteriores, y versión 32.0.0.156 y anteriores, tienen una vulnerabilidad de lectura fuera de límites. Su explotación exitosa conllevaría a la divulgación de información. This vulnerability allows remote attackers to disclo... • https://helpx.adobe.com/security/products/flash-player/apsb19-19.html • CWE-125: Out-of-bounds Read •