Critical severity9.8NVD Advisory· Published Dec 9, 2017· Updated Jun 17, 2026
CVE-2017-11215
CVE-2017-11215
Description
An issue was discovered in Adobe Flash Player 27.0.0.183 and earlier versions. This vulnerability is an instance of a use after free vulnerability in the Primetime SDK. The mismatch between an old and a new object can provide an attacker with unintended memory access -- potentially leading to code corruption, control-flow hijack, or an information leak attack. Successful exploitation could lead to arbitrary code execution.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
10cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*range: <=27.0.0.183
- cpe:2.3:a:adobe:flash_player:*:*:*:*:*:chrome:*:*range: <=27.0.0.183
- cpe:2.3:a:adobe:flash_player:*:*:*:*:*:edge:*:*range: <=27.0.0.183
- cpe:2.3:a:adobe:flash_player:*:*:*:*:*:intenet_explorer_11:*:*range: <=27.0.0.183
- (no CPE)range: <=27.0.0.183
- cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*
- osv-coords2 versionspkg:rpm/opensuse/chromium&distro=openSUSE%20Tumbleweedpkg:rpm/suse/chromium&distro=SUSE%20Package%20Hub%2012%20SP2
< 93.0.4577.82-1.1+ 1 more
- (no CPE)range: < 93.0.4577.82-1.1
- (no CPE)range: < 66.0.3359.181-55.1
Patches
Vulnerability mechanics
References
5- helpx.adobe.com/security/products/flash-player/apsb17-33.htmlnvdPatchVendor Advisory
- www.securityfocus.com/bid/101837nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1039778nvdThird Party AdvisoryVDB Entry
- access.redhat.com/errata/RHSA-2017:3222nvdThird Party AdvisoryVDB Entry
- security.gentoo.org/glsa/201711-13nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.