vulnerability
Adobe Flash Player: APSB17-33 (CVE-2017-11215): Security updates available for Flash Player | APSB17-33
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 10 | (AV:N/AC:L/Au:N/C:C/I:C/A:C) | 2017-11-14 | 2017-11-14 | 2019-05-05 |
Severity
10
CVSS
(AV:N/AC:L/Au:N/C:C/I:C/A:C)
Published
2017-11-14
Added
2017-11-14
Modified
2019-05-05
Description
An issue was discovered in Adobe Flash Player 27.0.0.183 and earlier versions. This vulnerability is an instance of a use after free vulnerability in the Primetime SDK. The mismatch between an old and a new object can provide an attacker with unintended memory access -- potentially leading to code corruption, control-flow hijack, or an information leak attack. Successful exploitation could lead to arbitrary code execution.
Solution(s)
adobe-flash-upgrade-27-0-0-187-linuxadobe-flash-upgrade-27-0-0-187-macosxadobe-flash-upgrade-27-0-0-187-windows
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.