CVE-2018-15982

2019-01-18 18:29:01 2019-01-29 20:24:27

Flash Player versions 31.0.0.153 and earlier, and 31.0.0.108 and earlier have a use after free vulnerability. Successful exploitation could lead to arbitrary code execution.

Vector

NETWORK

Complexity

LOW

Authentication

NONE

Confidentiality

COMPLETE

Integrity

COMPLETE

Availability

COMPLETE

Redhat Enterprise linux workstation 6.0 (not an official CPE) Redhat Enterprise linux server 6.0 (not an official CPE) Redhat Enterprise linux desktop 6.0 (not an official CPE)

Adobe Flash player installer 31.0.0.108 (not an official CPE) Adobe Flash player 31.0.0.153 ~~~internet explorer 11~~ (not an official CPE) Adobe Flash player 31.0.0.153 ~~~edge~~ (not an official CPE) Adobe Flash player 31.0.0.153 ~~~chrome~~ (not an official CPE) Adobe Flash player 31.0.0.153 (not an official CPE)

Redhat - Enterprise linux workstation Redhat - Enterprise linux server Redhat - Enterprise linux desktop Adobe - Flash player installer Adobe - Flash player

Advisory	Patch	Confirmed	Link
			RHSA-2018:3795
			https://helpx.adobe.com/security/products/flash-player/a...
			106116
			46051

Use After Free (ID 416)