VYPR
Unrated severityNVD Advisory· Published Nov 11, 2011· Updated Jun 16, 2026

CVE-2011-2458

CVE-2011-2458

Description

Adobe Flash Player before 10.3.183.11 and 11.x before 11.1.102.55 on Windows, Mac OS X, Linux, and Solaris and before 11.1.102.59 on Android, and Adobe AIR before 3.1.0.4880, when Internet Explorer is used, allows remote attackers to bypass the cross-domain policy via a crafted web site.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • Adobe Inc./Air2 versions
    cpe:2.3:a:adobe:adobe_air:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:adobe:adobe_air:*:*:*:*:*:*:*:*range: >=3.0,<3.1.0.4880
    • (no CPE)range: <3.1.0.4880
  • cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*range: >=10.0,<10.3.183.11
    • (no CPE)range: <10.3.183.11, <11.1.102.55

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.