Flash Player versions 31.0.0.153 and earlier, and 31.0.0.108 and earlier have a use after free vulnerability. Successful exploitation could lead to arbitrary code execution.
Vector
NETWORK
Complexity
LOW
Authentication
NONE
Confidentiality
COMPLETE
Integrity
COMPLETE
Availability
COMPLETE
Adobe Flash player installer 31.0.0.108 (not an official CPE)
Adobe Flash player 31.0.0.153 ~~~internet explorer 11~~ (not an official CPE)
Adobe Flash player 31.0.0.153 ~~~edge~~ (not an official CPE)
Adobe Flash player 31.0.0.153 ~~~chrome~~ (not an official CPE)
Adobe Flash player 31.0.0.153 (not an official CPE)
Advisory | Patch | Confirmed | Link |
---|---|---|---|
RHSA-2018:3795 | |||
https://helpx.adobe.com/security/products/flash-player/a... | |||
106116 | |||
46051 |