Adobe Flash Player version 32.0.0.192 and earlier versions have a Same Origin Policy Bypass vulnerability. Successful exploitation could lead to Information Disclosure in the context of the current user.
Max CVSS
7.5
EPSS Score
0.19%
Published
2019-09-27
Updated
2022-04-18
Adobe Flash Player versions 32.0.0.192 and earlier, 32.0.0.192 and earlier, and 32.0.0.192 and earlier have an use after free vulnerability. Successful exploitation could lead to arbitrary code execution.
Max CVSS
8.8
EPSS Score
1.35%
Published
2019-06-12
Updated
2022-04-18
Adobe Flash Player versions 32.0.0.156 and earlier, 32.0.0.156 and earlier, and 32.0.0.156 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure .
Max CVSS
7.5
EPSS Score
0.74%
Published
2019-05-23
Updated
2022-10-12
Flash Player versions 31.0.0.153 and earlier, and 31.0.0.108 and earlier have an insecure library loading (dll hijacking) vulnerability. Successful exploitation could lead to privilege escalation.
Max CVSS
7.8
EPSS Score
0.08%
Published
2019-01-18
Updated
2019-01-28
Flash Player versions 31.0.0.122 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.
Max CVSS
7.5
EPSS Score
2.54%
Published
2018-11-29
Updated
2018-12-28
Adobe Flash Player versions 30.0.0.154 and earlier have a privilege escalation vulnerability. Successful exploitation could lead to information disclosure.
Max CVSS
7.5
EPSS Score
0.44%
Published
2018-09-25
Updated
2019-10-03
Adobe Flash Player 30.0.0.134 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.
Max CVSS
7.5
EPSS Score
1.78%
Published
2018-08-29
Updated
2018-10-30
Adobe Flash Player 30.0.0.134 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.
Max CVSS
7.5
EPSS Score
1.49%
Published
2018-08-29
Updated
2018-10-30
Adobe Flash Player 30.0.0.113 and earlier versions have an Out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.
Max CVSS
7.5
EPSS Score
0.62%
Published
2018-07-20
Updated
2018-09-17
Adobe Flash Player 30.0.0.113 and earlier versions have a Type Confusion vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the current user.
Max CVSS
8.8
EPSS Score
1.73%
Published
2018-07-20
Updated
2018-09-17
Adobe Flash Player versions 29.0.0.171 and earlier have a Type Confusion vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the current user.
Max CVSS
8.8
EPSS Score
1.69%
Published
2018-07-09
Updated
2019-03-07
An Out-of-bounds Read issue was discovered in Adobe Flash Player before 28.0.0.137. This vulnerability occurs because of computation that reads data that is past the end of the target buffer. The use of an invalid (out-of-range) pointer offset during access of internal data structure fields causes the vulnerability. A successful attack can lead to sensitive data exposure.
Max CVSS
7.5
EPSS Score
0.57%
Published
2018-01-09
Updated
2021-09-08

CVE-2017-11292

Known exploited
Adobe Flash Player version 27.0.0.159 and earlier has a flawed bytecode verification procedure, which allows for an untrusted value to be used in the calculation of an array index. This can lead to type confusion, and successful exploitation could lead to arbitrary code execution.
Max CVSS
8.8
EPSS Score
2.61%
Published
2017-10-22
Updated
2023-01-27
CISA KEV Added
2022-03-03
Adobe Flash Player versions 26.0.0.137 and earlier have a security bypass vulnerability that leads to information disclosure when performing URL redirect.
Max CVSS
7.4
EPSS Score
0.36%
Published
2017-08-11
Updated
2022-11-16
Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have security bypass vulnerability in the implementation of the same origin policy.
Max CVSS
8.8
EPSS Score
1.35%
Published
2016-12-15
Updated
2022-11-16
Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable use after free vulnerability in the NetConnection class when handling an attached script object. Successful exploitation could lead to arbitrary code execution.
Max CVSS
8.8
EPSS Score
1.62%
Published
2016-12-15
Updated
2022-11-16
Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable use after free vulnerability in the PSDK's MediaPlayer class. Successful exploitation could lead to arbitrary code execution.
Max CVSS
8.8
EPSS Score
1.62%
Published
2016-12-15
Updated
2022-11-16
Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable integer overflow vulnerability in the BitmapData class. Successful exploitation could lead to arbitrary code execution.
Max CVSS
8.8
EPSS Score
2.29%
Published
2016-12-15
Updated
2022-11-16
Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable use after free vulnerability in the MovieClip class related to objects at multiple presentation levels. Successful exploitation could lead to arbitrary code execution.
Max CVSS
8.8
EPSS Score
1.62%
Published
2016-12-15
Updated
2022-11-16
Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable memory corruption vulnerability in the Worker class. Successful exploitation could lead to arbitrary code execution.
Max CVSS
8.8
EPSS Score
2.07%
Published
2016-12-15
Updated
2022-11-16
Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable buffer overflow / underflow vulnerability in the RegExp class for specific search strategies. Successful exploitation could lead to arbitrary code execution.
Max CVSS
8.8
EPSS Score
1.58%
Published
2016-12-15
Updated
2022-11-16
Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable buffer overflow / underflow vulnerability in the RegExp class related to backtrack search functionality. Successful exploitation could lead to arbitrary code execution.
Max CVSS
8.8
EPSS Score
1.58%
Published
2016-12-15
Updated
2022-11-16
Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable buffer overflow / underflow vulnerability in the RegExp class related to alternation functionality. Successful exploitation could lead to arbitrary code execution.
Max CVSS
8.8
EPSS Score
1.58%
Published
2016-12-15
Updated
2022-11-16
Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable buffer overflow / underflow vulnerability in the RegExp class related to bookmarking in searches. Successful exploitation could lead to arbitrary code execution.
Max CVSS
8.8
EPSS Score
1.58%
Published
2016-12-15
Updated
2022-11-16
Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to obtain sensitive information from process memory via unspecified vectors.
Max CVSS
7.5
EPSS Score
86.72%
Published
2016-07-13
Updated
2023-01-26
76 vulnerabilities found
1 2 3 4
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!