vulnerability

CentOS Linux: CVE-2017-2937: Critical: flash-plugin security update (CESA-2017:0057)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
9	(AV:N/AC:M/Au:N/C:C/I:C/A:C)	Jan 11, 2017	Aug 28, 2019	May 25, 2023

Severity

CVSS

(AV:N/AC:M/Au:N/C:C/I:C/A:C)

Published

Jan 11, 2017

Added

Aug 28, 2019

Modified

May 25, 2023

Description

Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable use after free vulnerability in the ActionScript FileReference class, when using class inheritance. Successful exploitation could lead to arbitrary code execution.

Solution

centos-upgrade-flash-plugin

References

BID-95342
NVD-CVE-2017-2937
REDHAT-RHSA-2017:0057

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today