Unrated severityNVD Advisory· Published Nov 11, 2011· Updated Jun 16, 2026
CVE-2011-2458
CVE-2011-2458
Description
Adobe Flash Player before 10.3.183.11 and 11.x before 11.1.102.55 on Windows, Mac OS X, Linux, and Solaris and before 11.1.102.59 on Android, and Adobe AIR before 3.1.0.4880, when Internet Explorer is used, allows remote attackers to bypass the cross-domain policy via a crafted web site.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4cpe:2.3:a:adobe:adobe_air:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:adobe:adobe_air:*:*:*:*:*:*:*:*range: >=3.0,<3.1.0.4880
- (no CPE)range: <3.1.0.4880
cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*range: >=10.0,<10.3.183.11
- (no CPE)range: <10.3.183.11, <11.1.102.55
Patches
Vulnerability mechanics
References
8- www.adobe.com/support/security/bulletins/apsb11-28.htmlnvdPatchVendor Advisory
- lists.opensuse.org/opensuse-security-announce/2011-11/msg00014.htmlnvdMailing ListThird Party Advisory
- lists.opensuse.org/opensuse-security-announce/2011-11/msg00017.htmlnvdMailing ListThird Party Advisory
- lists.opensuse.org/opensuse-security-announce/2011-11/msg00019.htmlnvdMailing ListThird Party Advisory
- secunia.com/advisories/48819nvdThird Party Advisory
- security.gentoo.org/glsa/glsa-201204-07.xmlnvdThird Party Advisory
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14014nvdThird Party Advisory
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16179nvdThird Party Advisory
News mentions
0No linked articles in our index yet.