Flashplayer

CVEs (1,033)

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2016-4177	Adobe Inc. Flash Player Desktop Runtime	Hig	0.64	8.8	0.48		Jul 13, 2016	Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code or cause a denial of service (stack memory corruption) via unspecified vectors, a different vulnerability…
CVE-2016-4176	Adobe Inc. Flash Player Desktop Runtime	Hig	0.64	8.8	0.48		Jul 13, 2016	Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code or cause a denial of service (stack memory corruption) via unspecified vectors, a different vulnerability…
CVE-2016-4175	Adobe Inc. Flash Player Desktop Runtime	Hig	0.64	8.8	0.50		Jul 13, 2016	Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than…
CVE-2016-4163	Adobe Inc. Air Sdk	Cri	0.64	9.8	0.05		Jun 16, 2016	Adobe Flash Player before 18.0.0.352 and 19.x through 21.x before 21.0.0.242 on Windows and OS X and before 11.2.202.621 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than…
CVE-2016-4162	Adobe Inc. Air Sdk	Cri	0.64	9.8	0.05		Jun 16, 2016	Adobe Flash Player before 18.0.0.352 and 19.x through 21.x before 21.0.0.242 on Windows and OS X and before 11.2.202.621 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than…
CVE-2016-4161	Adobe Inc. Air Sdk	Cri	0.64	9.8	0.05		Jun 16, 2016	Adobe Flash Player before 18.0.0.352 and 19.x through 21.x before 21.0.0.242 on Windows and OS X and before 11.2.202.621 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than…
CVE-2016-4160	Adobe Inc. Air Sdk	Cri	0.64	9.8	0.05		Jun 16, 2016	Adobe Flash Player before 18.0.0.352 and 19.x through 21.x before 21.0.0.242 on Windows and OS X and before 11.2.202.621 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than…
CVE-2016-4120	GNU Flash Player	Cri	0.64	9.8	0.05		Jun 16, 2016	Adobe Flash Player before 18.0.0.352 and 19.x through 21.x before 21.0.0.242 on Windows and OS X and before 11.2.202.621 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than…
CVE-2016-1001	GNU Flash Player	Hig	0.64	8.8	0.43		Mar 12, 2016	Heap-based buffer overflow in Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21.0.0.182 on Windows and OS X and before 11.2.202.577 on Linux, Adobe AIR before 21.0.0.176, Adobe AIR SDK before 21.0.0.176, and Adobe AIR SDK & Compiler before 21.0.0.176 allows…
CVE-2016-0967	Adobe Inc. Air	Hig	0.64	8.8	0.49		Feb 10, 2016	Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and before 11.2.202.569 on Linux, Adobe AIR before 20.0.0.260, Adobe AIR SDK before 20.0.0.260, and Adobe AIR SDK & Compiler before 20.0.0.260 allow attackers to execute arbitrary code…
CVE-2016-0965	Adobe Inc. Air	Hig	0.64	8.8	0.49		Feb 10, 2016	Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and before 11.2.202.569 on Linux, Adobe AIR before 20.0.0.260, Adobe AIR SDK before 20.0.0.260, and Adobe AIR SDK & Compiler before 20.0.0.260 allow attackers to execute arbitrary code…
CVE-2016-0964	Adobe Inc. Air	Hig	0.64	8.8	0.49		Feb 10, 2016	Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and before 11.2.202.569 on Linux, Adobe AIR before 20.0.0.260, Adobe AIR SDK before 20.0.0.260, and Adobe AIR SDK & Compiler before 20.0.0.260 allow attackers to execute arbitrary code…
CVE-2015-8644	Adobe Inc. Air	Hig	0.64	8.8	0.47		Dec 28, 2015	Adobe Flash Player before 18.0.0.324 and 19.x and 20.x before 20.0.0.267 on Windows and OS X and before 11.2.202.559 on Linux, Adobe AIR before 20.0.0.233, Adobe AIR SDK before 20.0.0.233, and Adobe AIR SDK & Compiler before 20.0.0.233 allow attackers to execute arbitrary code…
CVE-2015-8635	GNU Flash Player	Hig	0.64	8.8	0.47		Dec 28, 2015	Use-after-free vulnerability in Adobe Flash Player before 18.0.0.324 and 19.x and 20.x before 20.0.0.267 on Windows and OS X and before 11.2.202.559 on Linux, Adobe AIR before 20.0.0.233, Adobe AIR SDK before 20.0.0.233, and Adobe AIR SDK & Compiler before 20.0.0.233 allows…
CVE-2015-8634	Adobe Inc. Air	Hig	0.64	8.8	0.47		Dec 28, 2015	Use-after-free vulnerability in Adobe Flash Player before 18.0.0.324 and 19.x and 20.x before 20.0.0.267 on Windows and OS X and before 11.2.202.559 on Linux, Adobe AIR before 20.0.0.233, Adobe AIR SDK before 20.0.0.233, and Adobe AIR SDK & Compiler before 20.0.0.233 allows…
CVE-2015-0310	Adobe Inc. Flashplayer	Hig	0.64	7.8	0.10	KEV	Jan 23, 2015	Adobe Flash Player before 13.0.0.262 and 14.x through 16.x before 16.0.0.287 on Windows and OS X and before 11.2.202.438 on Linux does not properly restrict discovery of memory addresses, which allows attackers to bypass the ASLR protection mechanism on Windows, and have an…
CVE-2017-2992	Adobe Inc. Flash Player Desktop Runtime	Hig	0.63	8.8	0.38		Feb 15, 2017	Adobe Flash Player versions 24.0.0.194 and earlier have an exploitable heap overflow vulnerability when parsing an MP4 header. Successful exploitation could lead to arbitrary code execution.
CVE-2017-2986	Adobe Inc. Flash Player Desktop Runtime	Hig	0.63	8.8	0.38		Feb 15, 2017	Adobe Flash Player versions 24.0.0.194 and earlier have an exploitable heap overflow vulnerability in the Flash Video (FLV) codec. Successful exploitation could lead to arbitrary code execution.
CVE-2016-4137	Red Hat Enterprise Linux Desktop	Hig	0.63	8.8	0.35		Jun 16, 2016	Unspecified vulnerability in Adobe Flash Player 21.0.0.242 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-083.
CVE-2016-4136	Red Hat Enterprise Linux Desktop	Hig	0.63	8.8	0.35		Jun 16, 2016	Unspecified vulnerability in Adobe Flash Player 21.0.0.242 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-083.

CVE-2016-4177HigJul 13, 2016
Adobe Inc.
Flash Player Desktop Runtime
risk 0.64cvss 8.8epss 0.48
Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code or cause a denial of service (stack memory corruption) via unspecified vectors, a different vulnerability…
CVE-2016-4176HigJul 13, 2016
Adobe Inc.
Flash Player Desktop Runtime
risk 0.64cvss 8.8epss 0.48
Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code or cause a denial of service (stack memory corruption) via unspecified vectors, a different vulnerability…
CVE-2016-4175HigJul 13, 2016
Adobe Inc.
Flash Player Desktop Runtime
risk 0.64cvss 8.8epss 0.50
Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than…
CVE-2016-4163CriJun 16, 2016
Adobe Inc.
Air Sdk
risk 0.64cvss 9.8epss 0.05
Adobe Flash Player before 18.0.0.352 and 19.x through 21.x before 21.0.0.242 on Windows and OS X and before 11.2.202.621 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than…
CVE-2016-4162CriJun 16, 2016
Adobe Inc.
Air Sdk
risk 0.64cvss 9.8epss 0.05
Adobe Flash Player before 18.0.0.352 and 19.x through 21.x before 21.0.0.242 on Windows and OS X and before 11.2.202.621 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than…
CVE-2016-4161CriJun 16, 2016
Adobe Inc.
Air Sdk
risk 0.64cvss 9.8epss 0.05
Adobe Flash Player before 18.0.0.352 and 19.x through 21.x before 21.0.0.242 on Windows and OS X and before 11.2.202.621 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than…
CVE-2016-4160CriJun 16, 2016
Adobe Inc.
Air Sdk
risk 0.64cvss 9.8epss 0.05
Adobe Flash Player before 18.0.0.352 and 19.x through 21.x before 21.0.0.242 on Windows and OS X and before 11.2.202.621 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than…
CVE-2016-4120CriJun 16, 2016
GNU
Flash Player
risk 0.64cvss 9.8epss 0.05
Adobe Flash Player before 18.0.0.352 and 19.x through 21.x before 21.0.0.242 on Windows and OS X and before 11.2.202.621 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than…
CVE-2016-1001HigMar 12, 2016
GNU
Flash Player
risk 0.64cvss 8.8epss 0.43
Heap-based buffer overflow in Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21.0.0.182 on Windows and OS X and before 11.2.202.577 on Linux, Adobe AIR before 21.0.0.176, Adobe AIR SDK before 21.0.0.176, and Adobe AIR SDK & Compiler before 21.0.0.176 allows…
CVE-2016-0967HigFeb 10, 2016
Adobe Inc.
Air
risk 0.64cvss 8.8epss 0.49
Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and before 11.2.202.569 on Linux, Adobe AIR before 20.0.0.260, Adobe AIR SDK before 20.0.0.260, and Adobe AIR SDK & Compiler before 20.0.0.260 allow attackers to execute arbitrary code…
CVE-2016-0965HigFeb 10, 2016
Adobe Inc.
Air
risk 0.64cvss 8.8epss 0.49
Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and before 11.2.202.569 on Linux, Adobe AIR before 20.0.0.260, Adobe AIR SDK before 20.0.0.260, and Adobe AIR SDK & Compiler before 20.0.0.260 allow attackers to execute arbitrary code…
CVE-2016-0964HigFeb 10, 2016
Adobe Inc.
Air
risk 0.64cvss 8.8epss 0.49
Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and before 11.2.202.569 on Linux, Adobe AIR before 20.0.0.260, Adobe AIR SDK before 20.0.0.260, and Adobe AIR SDK & Compiler before 20.0.0.260 allow attackers to execute arbitrary code…
CVE-2015-8644HigDec 28, 2015
Adobe Inc.
Air
risk 0.64cvss 8.8epss 0.47
Adobe Flash Player before 18.0.0.324 and 19.x and 20.x before 20.0.0.267 on Windows and OS X and before 11.2.202.559 on Linux, Adobe AIR before 20.0.0.233, Adobe AIR SDK before 20.0.0.233, and Adobe AIR SDK & Compiler before 20.0.0.233 allow attackers to execute arbitrary code…
CVE-2015-8635HigDec 28, 2015
GNU
Flash Player
risk 0.64cvss 8.8epss 0.47
Use-after-free vulnerability in Adobe Flash Player before 18.0.0.324 and 19.x and 20.x before 20.0.0.267 on Windows and OS X and before 11.2.202.559 on Linux, Adobe AIR before 20.0.0.233, Adobe AIR SDK before 20.0.0.233, and Adobe AIR SDK & Compiler before 20.0.0.233 allows…
CVE-2015-8634HigDec 28, 2015
Adobe Inc.
Air
risk 0.64cvss 8.8epss 0.47
Use-after-free vulnerability in Adobe Flash Player before 18.0.0.324 and 19.x and 20.x before 20.0.0.267 on Windows and OS X and before 11.2.202.559 on Linux, Adobe AIR before 20.0.0.233, Adobe AIR SDK before 20.0.0.233, and Adobe AIR SDK & Compiler before 20.0.0.233 allows…
CVE-2015-0310HigKEVJan 23, 2015
Adobe Inc.
Flashplayer
risk 0.64cvss 7.8epss 0.10
Adobe Flash Player before 13.0.0.262 and 14.x through 16.x before 16.0.0.287 on Windows and OS X and before 11.2.202.438 on Linux does not properly restrict discovery of memory addresses, which allows attackers to bypass the ASLR protection mechanism on Windows, and have an…
CVE-2017-2992HigFeb 15, 2017
Adobe Inc.
Flash Player Desktop Runtime
risk 0.63cvss 8.8epss 0.38
Adobe Flash Player versions 24.0.0.194 and earlier have an exploitable heap overflow vulnerability when parsing an MP4 header. Successful exploitation could lead to arbitrary code execution.
CVE-2017-2986HigFeb 15, 2017
Adobe Inc.
Flash Player Desktop Runtime
risk 0.63cvss 8.8epss 0.38
Adobe Flash Player versions 24.0.0.194 and earlier have an exploitable heap overflow vulnerability in the Flash Video (FLV) codec. Successful exploitation could lead to arbitrary code execution.
CVE-2016-4137HigJun 16, 2016
Red Hat
Enterprise Linux Desktop
risk 0.63cvss 8.8epss 0.35
Unspecified vulnerability in Adobe Flash Player 21.0.0.242 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-083.
CVE-2016-4136HigJun 16, 2016
Red Hat
Enterprise Linux Desktop
risk 0.63cvss 8.8epss 0.35
Unspecified vulnerability in Adobe Flash Player 21.0.0.242 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-083.

Page 5 of 52