CVE-2011-2428
Description
Adobe Flash Player before 10.3.183.10 on Windows, Mac OS X, Linux, and Solaris, and before 10.3.186.7 on Android, allows attackers to execute arbitrary code or cause a denial of service (browser crash) via unspecified vectors, related to a "logic error issue."
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Adobe Flash Player before 10.3.183.10/10.3.186.7 contains a logic error that allows remote attackers to execute arbitrary code or cause a denial of service.
Vulnerability
CVE-2011-2428 is a logic error in Adobe Flash Player that affects versions prior to 10.3.183.10 on Windows, Mac OS X, Linux, and Solaris, and prior to 10.3.186.7 on Android [1][2]. The vulnerability can be triggered via unspecified vectors, likely involving specially crafted Flash content that exploits the logic flaw.
Exploitation
An attacker can exploit this vulnerability by delivering malicious Flash content to a victim, typically through a web page or email. No authentication is required, and the victim only needs to open the content in a browser or application that uses the vulnerable Flash Player. The exact attack vector is not disclosed in the available references, but the logic error can be triggered remotely without user interaction beyond opening the content.
Impact
Successful exploitation allows an attacker to execute arbitrary code in the context of the affected Flash Player instance, potentially leading to full system compromise. Alternatively, the attacker may cause a denial of service by crashing the browser or application. The impact is high, as it can result in complete loss of confidentiality, integrity, and availability.
Mitigation
Adobe released Flash Player 10.3.183.10 for desktop platforms and 10.3.186.7 for Android to address this issue [1]. Red Hat also issued RHSA-2011-1333 to provide updated packages for affected distributions [1]. Users should update to the latest version immediately. No workarounds are documented in the available references.
AI Insight generated on May 24, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
96cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*+ 94 more
- cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*range: <=10.3.183.7
- cpe:2.3:a:adobe:flash_player:10.0.0.584:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:10.0.12.10:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:10.0.12.36:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:10.0.15.3:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:10.0.22.87:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:10.0.32.18:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:10.0.42.34:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:10.0.45.2:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:10.1.102.64:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:10.1.105.6:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:10.1.106.16:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:10.1.52.14.1:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:10.1.52.15:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:10.1.53.64:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:10.1.82.76:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:10.1.85.3:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:10.1.92.10:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:10.1.92.8:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:10.1.95.1:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:10.1.95.2:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:10.2.152:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:10.2.152.32:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:10.2.152.33:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:10.2.154.13:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:10.2.154.25:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:10.2.156.12:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:10.2.157.51:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:10.2.159.1:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:10.3.181.14:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:10.3.181.16:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:10.3.181.23:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:10.3.181.34:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:10.3.181.36:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:10.3.183.5:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:10.3.185.21:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:10.3.185.23:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:10.3.185.25:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:10.3.186.3:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:6.0.21.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:6.0.79:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:7.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:7.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:7.0.14.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:7.0.19.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:7.0.24.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:7.0.25:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:7.0.53.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:7.0.60.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:7.0.61.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:7.0.63:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:7.0.66.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:7.0.67.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:7.0.68.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:7.0.69.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:7.0.70.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:7.0.73.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:7.1:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:7.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:7.2:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:8.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:8.0.22.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:8.0.24.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:8.0.33.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:8.0.34.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:8.0.35.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:8.0.39.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:8.0.42.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.0.112.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.0.114.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.0.115.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.0.124.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.0.125.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.0.151.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.0.152.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.0.155.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.0.159.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.0.16:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.0.18d60:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.0.20:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.0.20.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.0.246.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.0.260.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.0.262.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.0.277.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.0.28:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.0.28.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.0.283.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.0.31:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.0.31.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.0.45.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.0.47.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.0.48.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.125.0:*:*:*:*:*:*:*
- Range: <10.3.183.10 (Windows, Mac OS X, Linux, Solaris) / <10.3.186.7 (Android)
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
6- www.adobe.com/support/security/bulletins/apsb11-26.htmlnvdPatchVendor Advisory
- lists.opensuse.org/opensuse-security-announce/2011-09/msg00025.htmlnvd
- secunia.com/advisories/48308nvd
- www.redhat.com/support/errata/RHSA-2011-1333.htmlnvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13945nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16181nvd
News mentions
0No linked articles in our index yet.