Published: 19/05/2018 Updated: 18/11/2022

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8

VMScore: 935

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Adobe Flash Player versions 29.0.0.113 and previous versions have an exploitable out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the current user.

Vulnerable Product	Search on Vulmon	Subscribe to Product
adobe flash_player_desktop_runtime
adobe flash_player

Synopsis Critical: flash-plugin security update Type/Severity Security Advisory: Critical Topic An update for flash-plugin is now available for Red Hat Enterprise Linux 6 SupplementaryRed Hat Product Security has rated this update as having a security impact of Critical A Common Vulnerability Scoring Syst ...

Adobe Flash Player versions 2900113 and earlier have an exploitable out-of-bounds write vulnerability Successful exploitation could lead to arbitrary code execution in the context of the current user ...

The attached swf file causes and out-of-bounds write in blur filtering This PoC crashes reliably in Firefox for Linux Proof of Concept: githubcom/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/44529zip ...

CWE-787 https://helpx.adobe.com/security/products/flash-player/apsb18-08.html https://www.exploit-db.com/exploits/44529/https://access.redhat.com/errata/RHSA-2018:1119 http://www.securitytracker.com/id/1040648 http://www.securityfocus.com/bid/103708 https://security.gentoo.org/glsa/201804-11 https://access.redhat.com/errata/RHSA-2018:1119 https://nvd.nist.gov https://www.exploit-db.com/exploits/44529/

CVE-2018-4937

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Exploits

References

Vulmon Search

About

Products

Connect