Flashplayer

CVEs (1,033)

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2016-4117	Red Hat Enterprise Linux Desktop	Cri	0.86	9.8	0.93	KEV	May 11, 2016	Adobe Flash Player 21.0.0.226 and earlier allows remote attackers to execute arbitrary code via unspecified vectors, as exploited in the wild in May 2016.
CVE-2016-1019	Adobe Inc. Air Sdk	Cri	0.86	9.8	0.57	KEV	Apr 7, 2016	Adobe Flash Player 21.0.0.197 and earlier allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via unspecified vectors, as exploited in the wild in April 2016.
CVE-2015-5122	Red Hat Enterprise Linux Desktop	Cri	0.86	9.8	0.93	KEV	Jul 14, 2015	Use-after-free vulnerability in the DisplayObject class in the ActionScript 3 (AS3) implementation in Adobe Flash Player 13.x through 13.0.0.302 on Windows and OS X, 14.x through 18.0.0.203 on Windows and OS X, 11.x through 11.2.202.481 on Linux, and 12.x through 18.0.0.204 on…
CVE-2015-5119	Red Hat Enterprise Linux Desktop	Cri	0.86	9.8	0.93	KEV	Jul 8, 2015	Use-after-free vulnerability in the ByteArray class in the ActionScript 3 (AS3) implementation in Adobe Flash Player 13.x through 13.0.0.296 and 14.x through 18.0.0.194 on Windows and OS X and 11.x through 11.2.202.468 on Linux allows remote attackers to execute arbitrary code…
CVE-2015-3113	Red Hat Enterprise Linux Desktop	Cri	0.86	9.8	0.92	KEV	Jun 23, 2015	Heap-based buffer overflow in Adobe Flash Player before 13.0.0.296 and 14.x through 18.x before 18.0.0.194 on Windows and OS X and before 11.2.202.468 on Linux allows remote attackers to execute arbitrary code via unspecified vectors, as exploited in the wild in June 2015.
CVE-2015-3043	Red Hat Enterprise Linux Desktop	Cri	0.86	9.8	0.87	KEV	Apr 14, 2015	Adobe Flash Player before 13.0.0.281 and 14.x through 17.x before 17.0.0.169 on Windows and OS X and before 11.2.202.457 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, as exploited in the wild in…
CVE-2015-0313	Microsoft Internet Explorer	Cri	0.86	9.8	0.93	KEV	Feb 2, 2015	Use-after-free vulnerability in Adobe Flash Player before 13.0.0.269 and 14.x through 16.x before 16.0.0.305 on Windows and OS X and before 11.2.202.442 on Linux allows remote attackers to execute arbitrary code via unspecified vectors, as exploited in the wild in February 2015,…
CVE-2015-0311	Microsoft Internet Explorer	Cri	0.86	9.8	0.93	KEV	Jan 23, 2015	Unspecified vulnerability in Adobe Flash Player through 13.0.0.262 and 14.x, 15.x, and 16.x through 16.0.0.287 on Windows and OS X and through 11.2.202.438 on Linux allows remote attackers to execute arbitrary code via unknown vectors, as exploited in the wild in January 2015.
CVE-2014-0497	Red Hat Enterprise Linux Desktop	Cri	0.86	9.8	0.93	KEV	Feb 5, 2014	Integer underflow in Adobe Flash Player before 11.7.700.261 and 11.8.x through 12.0.x before 12.0.0.44 on Windows and Mac OS X, and before 11.2.202.336 on Linux, allows remote attackers to execute arbitrary code via unspecified vectors.
CVE-2011-0611	Adobe Inc. Acrobat Reader	Hig	0.80	8.8	0.94	KEV	Apr 13, 2011	Adobe Flash Player before 10.2.154.27 on Windows, Mac OS X, Linux, and Solaris and 10.2.156.12 and earlier on Android; Adobe AIR before 2.6.19140; and Authplay.dll (aka AuthPlayLib.bundle) in Adobe Reader 9.x before 9.4.4 and 10.x through 10.0.1 on Windows, Adobe Reader 9.x…
CVE-2016-4171	Red Hat Enterprise Linux Desktop	Cri	0.79	9.8	0.44	KEV	Jun 16, 2016	Unspecified vulnerability in Adobe Flash Player 21.0.0.242 and earlier allows remote attackers to execute arbitrary code via unknown vectors, as exploited in the wild in June 2016.
CVE-2015-7645	Red Hat Enterprise Linux Desktop	Hig	0.79	7.8	0.85	KEV	Oct 15, 2015	Adobe Flash Player 18.x through 18.0.0.252 and 19.x through 19.0.0.207 on Windows and OS X and 11.x through 11.2.202.535 on Linux allows remote attackers to execute arbitrary code via a crafted SWF file, as exploited in the wild in October 2015.
CVE-2015-5123	Red Hat Enterprise Linux Desktop	Cri	0.79	9.8	0.41	KEV	Jul 14, 2015	Use-after-free vulnerability in the BitmapData class in the ActionScript 3 (AS3) implementation in Adobe Flash Player 13.x through 13.0.0.302 on Windows and OS X, 14.x through 18.0.0.203 on Windows and OS X, 11.x through 11.2.202.481 on Linux, and 12.x through 18.0.0.204 on…
CVE-2016-0984	Adobe Inc. Air Sdk	Hig	0.78	8.8	0.67	KEV	Feb 10, 2016	Use-after-free vulnerability in Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and before 11.2.202.569 on Linux, Adobe AIR before 20.0.0.260, Adobe AIR SDK before 20.0.0.260, and Adobe AIR SDK & Compiler before 20.0.0.260 allows…
CVE-2015-8651	Red Hat Enterprise Linux Desktop	Hig	0.76	8.8	0.89	KEV	Dec 28, 2015	Integer overflow in Adobe Flash Player before 18.0.0.324 and 19.x and 20.x before 20.0.0.267 on Windows and OS X and before 11.2.202.559 on Linux, Adobe AIR before 20.0.0.233, Adobe AIR SDK before 20.0.0.233, and Adobe AIR SDK & Compiler before 20.0.0.233 allows attackers to…
CVE-2014-0502	Red Hat Enterprise Linux Desktop	Hig	0.76	8.8	0.90	KEV	Feb 21, 2014	Double free vulnerability in Adobe Flash Player before 11.7.700.269 and 11.8.x through 12.0.x before 12.0.0.70 on Windows and Mac OS X and before 11.2.202.341 on Linux, Adobe AIR before 4.0.0.1628 on Android, Adobe AIR SDK before 4.0.0.1628, and Adobe AIR SDK & Compiler before…
CVE-2012-5054	Adobe Inc. Flashplayer	Hig	0.75	8.8	0.72	KEV	Sep 24, 2012	Integer overflow in the copyRawDataTo method in the Matrix3D class in Adobe Flash Player before 11.4.402.265 allows remote attackers to execute arbitrary code via malformed arguments.
CVE-2012-0754	Adobe Inc. Flashplayer	Hig	0.75	8.1	0.92	KEV	Feb 16, 2012	Adobe Flash Player before 10.3.183.15 and 11.x before 11.1.102.62 on Windows, Mac OS X, Linux, and Solaris; before 11.1.111.6 on Android 2.x and 3.x; and before 11.1.115.6 on Android 4.x allows attackers to execute arbitrary code or cause a denial of service (memory corruption)…
CVE-2016-7855	Red Hat Enterprise Linux Desktop	Hig	0.74	8.8	0.59	KEV	Nov 1, 2016	Use-after-free vulnerability in Adobe Flash Player before 23.0.0.205 on Windows and OS X and before 11.2.202.643 on Linux allows remote attackers to execute arbitrary code via unspecified vectors, as exploited in the wild in October 2016.
CVE-2013-0648	Red Hat Enterprise Linux Desktop	Hig	0.74	8.8	0.55	KEV	Feb 27, 2013	Unspecified vulnerability in the ExternalInterface ActionScript functionality in Adobe Flash Player before 10.3.183.67 and 11.x before 11.6.602.171 on Windows and Mac OS X, and before 10.3.183.67 and 11.x before 11.2.202.273 on Linux, allows remote attackers to execute arbitrary…

CVE-2016-4117CriKEVMay 11, 2016
Red Hat
Enterprise Linux Desktop
risk 0.86cvss 9.8epss 0.93
Adobe Flash Player 21.0.0.226 and earlier allows remote attackers to execute arbitrary code via unspecified vectors, as exploited in the wild in May 2016.
CVE-2016-1019CriKEVApr 7, 2016
Adobe Inc.
Air Sdk
risk 0.86cvss 9.8epss 0.57
Adobe Flash Player 21.0.0.197 and earlier allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via unspecified vectors, as exploited in the wild in April 2016.
CVE-2015-5122CriKEVJul 14, 2015
Red Hat
Enterprise Linux Desktop
risk 0.86cvss 9.8epss 0.93
Use-after-free vulnerability in the DisplayObject class in the ActionScript 3 (AS3) implementation in Adobe Flash Player 13.x through 13.0.0.302 on Windows and OS X, 14.x through 18.0.0.203 on Windows and OS X, 11.x through 11.2.202.481 on Linux, and 12.x through 18.0.0.204 on…
CVE-2015-5119CriKEVJul 8, 2015
Red Hat
Enterprise Linux Desktop
risk 0.86cvss 9.8epss 0.93
Use-after-free vulnerability in the ByteArray class in the ActionScript 3 (AS3) implementation in Adobe Flash Player 13.x through 13.0.0.296 and 14.x through 18.0.0.194 on Windows and OS X and 11.x through 11.2.202.468 on Linux allows remote attackers to execute arbitrary code…
CVE-2015-3113CriKEVJun 23, 2015
Red Hat
Enterprise Linux Desktop
risk 0.86cvss 9.8epss 0.92
Heap-based buffer overflow in Adobe Flash Player before 13.0.0.296 and 14.x through 18.x before 18.0.0.194 on Windows and OS X and before 11.2.202.468 on Linux allows remote attackers to execute arbitrary code via unspecified vectors, as exploited in the wild in June 2015.
CVE-2015-3043CriKEVApr 14, 2015
Red Hat
Enterprise Linux Desktop
risk 0.86cvss 9.8epss 0.87
Adobe Flash Player before 13.0.0.281 and 14.x through 17.x before 17.0.0.169 on Windows and OS X and before 11.2.202.457 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, as exploited in the wild in…
CVE-2015-0313CriKEVFeb 2, 2015
Microsoft
Internet Explorer
risk 0.86cvss 9.8epss 0.93
Use-after-free vulnerability in Adobe Flash Player before 13.0.0.269 and 14.x through 16.x before 16.0.0.305 on Windows and OS X and before 11.2.202.442 on Linux allows remote attackers to execute arbitrary code via unspecified vectors, as exploited in the wild in February 2015,…
CVE-2015-0311CriKEVJan 23, 2015
Microsoft
Internet Explorer
risk 0.86cvss 9.8epss 0.93
Unspecified vulnerability in Adobe Flash Player through 13.0.0.262 and 14.x, 15.x, and 16.x through 16.0.0.287 on Windows and OS X and through 11.2.202.438 on Linux allows remote attackers to execute arbitrary code via unknown vectors, as exploited in the wild in January 2015.
CVE-2014-0497CriKEVFeb 5, 2014
Red Hat
Enterprise Linux Desktop
risk 0.86cvss 9.8epss 0.93
Integer underflow in Adobe Flash Player before 11.7.700.261 and 11.8.x through 12.0.x before 12.0.0.44 on Windows and Mac OS X, and before 11.2.202.336 on Linux, allows remote attackers to execute arbitrary code via unspecified vectors.
CVE-2011-0611HigKEVApr 13, 2011
Adobe Inc.
Acrobat Reader
risk 0.80cvss 8.8epss 0.94
Adobe Flash Player before 10.2.154.27 on Windows, Mac OS X, Linux, and Solaris and 10.2.156.12 and earlier on Android; Adobe AIR before 2.6.19140; and Authplay.dll (aka AuthPlayLib.bundle) in Adobe Reader 9.x before 9.4.4 and 10.x through 10.0.1 on Windows, Adobe Reader 9.x…
CVE-2016-4171CriKEVJun 16, 2016
Red Hat
Enterprise Linux Desktop
risk 0.79cvss 9.8epss 0.44
Unspecified vulnerability in Adobe Flash Player 21.0.0.242 and earlier allows remote attackers to execute arbitrary code via unknown vectors, as exploited in the wild in June 2016.
CVE-2015-7645HigKEVOct 15, 2015
Red Hat
Enterprise Linux Desktop
risk 0.79cvss 7.8epss 0.85
Adobe Flash Player 18.x through 18.0.0.252 and 19.x through 19.0.0.207 on Windows and OS X and 11.x through 11.2.202.535 on Linux allows remote attackers to execute arbitrary code via a crafted SWF file, as exploited in the wild in October 2015.
CVE-2015-5123CriKEVJul 14, 2015
Red Hat
Enterprise Linux Desktop
risk 0.79cvss 9.8epss 0.41
Use-after-free vulnerability in the BitmapData class in the ActionScript 3 (AS3) implementation in Adobe Flash Player 13.x through 13.0.0.302 on Windows and OS X, 14.x through 18.0.0.203 on Windows and OS X, 11.x through 11.2.202.481 on Linux, and 12.x through 18.0.0.204 on…
CVE-2016-0984HigKEVFeb 10, 2016
Adobe Inc.
Air Sdk
risk 0.78cvss 8.8epss 0.67
Use-after-free vulnerability in Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and before 11.2.202.569 on Linux, Adobe AIR before 20.0.0.260, Adobe AIR SDK before 20.0.0.260, and Adobe AIR SDK & Compiler before 20.0.0.260 allows…
CVE-2015-8651HigKEVDec 28, 2015
Red Hat
Enterprise Linux Desktop
risk 0.76cvss 8.8epss 0.89
Integer overflow in Adobe Flash Player before 18.0.0.324 and 19.x and 20.x before 20.0.0.267 on Windows and OS X and before 11.2.202.559 on Linux, Adobe AIR before 20.0.0.233, Adobe AIR SDK before 20.0.0.233, and Adobe AIR SDK & Compiler before 20.0.0.233 allows attackers to…
CVE-2014-0502HigKEVFeb 21, 2014
Red Hat
Enterprise Linux Desktop
risk 0.76cvss 8.8epss 0.90
Double free vulnerability in Adobe Flash Player before 11.7.700.269 and 11.8.x through 12.0.x before 12.0.0.70 on Windows and Mac OS X and before 11.2.202.341 on Linux, Adobe AIR before 4.0.0.1628 on Android, Adobe AIR SDK before 4.0.0.1628, and Adobe AIR SDK & Compiler before…
CVE-2012-5054HigKEVSep 24, 2012
Adobe Inc.
Flashplayer
risk 0.75cvss 8.8epss 0.72
Integer overflow in the copyRawDataTo method in the Matrix3D class in Adobe Flash Player before 11.4.402.265 allows remote attackers to execute arbitrary code via malformed arguments.
CVE-2012-0754HigKEVFeb 16, 2012
Adobe Inc.
Flashplayer
risk 0.75cvss 8.1epss 0.92
Adobe Flash Player before 10.3.183.15 and 11.x before 11.1.102.62 on Windows, Mac OS X, Linux, and Solaris; before 11.1.111.6 on Android 2.x and 3.x; and before 11.1.115.6 on Android 4.x allows attackers to execute arbitrary code or cause a denial of service (memory corruption)…
CVE-2016-7855HigKEVNov 1, 2016
Red Hat
Enterprise Linux Desktop
risk 0.74cvss 8.8epss 0.59
Use-after-free vulnerability in Adobe Flash Player before 23.0.0.205 on Windows and OS X and before 11.2.202.643 on Linux allows remote attackers to execute arbitrary code via unspecified vectors, as exploited in the wild in October 2016.
CVE-2013-0648HigKEVFeb 27, 2013
Red Hat
Enterprise Linux Desktop
risk 0.74cvss 8.8epss 0.55
Unspecified vulnerability in the ExternalInterface ActionScript functionality in Adobe Flash Player before 10.3.183.67 and 11.x before 11.6.602.171 on Windows and Mac OS X, and before 10.3.183.67 and 11.x before 11.2.202.273 on Linux, allows remote attackers to execute arbitrary…

Page 1 of 52