VYPR

Flash Player Desktop Runtime

by Adobe Inc.

CVEs (237)

  • CVE-2017-2999HigMar 14, 2017
    risk 0.58cvss 8.8epss 0.04

    Adobe Flash Player versions 24.0.0.221 and earlier have an exploitable memory corruption vulnerability in the Primetime TVSDK functionality related to hosting playback surface. Successful exploitation could lead to arbitrary code execution.

  • CVE-2017-2998HigMar 14, 2017
    risk 0.58cvss 8.8epss 0.04

    Adobe Flash Player versions 24.0.0.221 and earlier have an exploitable memory corruption vulnerability in the Primetime TVSDK API functionality related to timeline interactions. Successful exploitation could lead to arbitrary code execution.

  • CVE-2017-2997HigMar 14, 2017
    risk 0.58cvss 8.8epss 0.07

    Adobe Flash Player versions 24.0.0.221 and earlier have an exploitable buffer overflow / underflow vulnerability in the Primetime TVSDK that supports customizing ad information. Successful exploitation could lead to arbitrary code execution.

  • CVE-2017-2996HigFeb 15, 2017
    risk 0.58cvss 8.8epss 0.05

    Adobe Flash Player versions 24.0.0.194 and earlier have an exploitable memory corruption vulnerability in Primetime SDK. Successful exploitation could lead to arbitrary code execution.

  • CVE-2017-2995HigFeb 15, 2017
    risk 0.58cvss 8.8epss 0.06

    Adobe Flash Player versions 24.0.0.194 and earlier have an exploitable type confusion vulnerability related to the MessageChannel class. Successful exploitation could lead to arbitrary code execution.

  • CVE-2017-2994HigFeb 15, 2017
    risk 0.58cvss 8.8epss 0.06

    Adobe Flash Player versions 24.0.0.194 and earlier have an exploitable use after free vulnerability in Primetime SDK event dispatch. Successful exploitation could lead to arbitrary code execution.

  • CVE-2017-2993HigFeb 15, 2017
    risk 0.58cvss 8.8epss 0.06

    Adobe Flash Player versions 24.0.0.194 and earlier have an exploitable use after free vulnerability related to event handlers. Successful exploitation could lead to arbitrary code execution.

  • CVE-2017-2991HigFeb 15, 2017
    risk 0.58cvss 8.8epss 0.09

    Adobe Flash Player versions 24.0.0.194 and earlier have an exploitable memory corruption vulnerability in the h264 codec (related to decompression). Successful exploitation could lead to arbitrary code execution.

  • CVE-2017-2990HigFeb 15, 2017
    risk 0.58cvss 8.8epss 0.10

    Adobe Flash Player versions 24.0.0.194 and earlier have an exploitable memory corruption vulnerability in the h264 decompression routine. Successful exploitation could lead to arbitrary code execution.

  • CVE-2017-2987HigFeb 15, 2017
    risk 0.58cvss 8.8epss 0.09

    Adobe Flash Player versions 24.0.0.194 and earlier have an exploitable integer overflow vulnerability related to Flash Broker COM. Successful exploitation could lead to arbitrary code execution.

  • CVE-2017-2982HigFeb 15, 2017
    risk 0.58cvss 8.8epss 0.06

    Adobe Flash Player versions 24.0.0.194 and earlier have an exploitable use after free vulnerability in a routine related to player shutdown. Successful exploitation could lead to arbitrary code execution.

  • CVE-2016-7890HigDec 15, 2016
    risk 0.58cvss 8.8epss 0.05

    Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have security bypass vulnerability in the implementation of the same origin policy.

  • CVE-2016-7881HigDec 15, 2016
    risk 0.58cvss 8.8epss 0.06

    Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable use after free vulnerability in the MovieClip class when handling conversion to an object. Successful exploitation could lead to arbitrary code execution.

  • CVE-2016-7880HigDec 15, 2016
    risk 0.58cvss 8.8epss 0.06

    Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable use after free vulnerability when setting the length property of an array object. Successful exploitation could lead to arbitrary code execution.

  • CVE-2016-7879HigDec 15, 2016
    risk 0.58cvss 8.8epss 0.08

    Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable use after free vulnerability in the NetConnection class when handling an attached script object. Successful exploitation could lead to arbitrary code execution.

  • CVE-2016-7878HigDec 15, 2016
    risk 0.58cvss 8.8epss 0.08

    Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable use after free vulnerability in the PSDK's MediaPlayer class. Successful exploitation could lead to arbitrary code execution.

  • CVE-2016-7877HigDec 15, 2016
    risk 0.58cvss 8.8epss 0.06

    Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable use after free vulnerability in the Action Message Format serialization (AFM0). Successful exploitation could lead to arbitrary code execution.

  • CVE-2016-7876HigDec 15, 2016
    risk 0.58cvss 8.8epss 0.05

    Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable memory corruption vulnerability in the Clipboard class related to data handling functionality. Successful exploitation could lead to arbitrary code execution.

  • CVE-2016-7875HigDec 15, 2016
    risk 0.58cvss 8.8epss 0.08

    Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable integer overflow vulnerability in the BitmapData class. Successful exploitation could lead to arbitrary code execution.

  • CVE-2016-7874HigDec 15, 2016
    risk 0.58cvss 8.8epss 0.05

    Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable memory corruption vulnerability in the NetConnection class when handling the proxy types. Successful exploitation could lead to arbitrary code execution.

Page 4 of 12