Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.5
CVSSv3

CVE-2019-8075

Published: 27/09/2019 Updated: 07/11/2023
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9
VMScore: 445
Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Subscribe to Flash Player Desktop Runtime

Vulnerability Summary

Adobe Flash Player version 32.0.0.192 and previous versions versions have a Same Origin Policy Bypass vulnerability. Successful exploitation could lead to Information Disclosure in the context of the current user.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

adobe flash_player_desktop_runtime

adobe flash_player

google chrome

debian debian linux 10.0

fedoraproject fedora 32

fedoraproject fedora 33

Vendor Advisories

Debian Security Advisories: DSA-4824-1 chromium -- security update
Multiple security issues were discovered in the Chromium web browser, which could result in the execution of arbitrary code, denial of service or information disclosure For the stable distribution (buster), these problems have been fixed in version 870428088-04~deb10u1 We recommend that you upgrade your chromium packages For the detailed sec ...
Google Chrome: Stable Channel Update for Desktop
The Chrome team is delighted to announce the promotion of Chrome 87 to the Stable channel (870428066 for Windows and Linux, 870428067 for Mac) This will roll out over the coming days/weeksChrome 870428066/67 contains native support for Apple M1 devices and a number of fixes and improvements -- a list of changes is available in the&n ...

Github Repositories

https://github.com/barmey/XS-Search

cross-site (XS) search attack - scripts

XS-Search Attacks Cross-site search attacks allow a rogue website to expose private, sensitive user-information from web applications The attacker exploits timing and other side channels to extract the information, using cleverly-designed cross-site queries Full-text available Reproducibility System In this repo you can find several xs-search attack scripts that we run on o

References

NVD-CWE-noinfohttps://helpx.adobe.com/security/products/flash-player/apsb19-30.htmlhttps://www.debian.org/security/2021/dsa-4824https://crbug.com/945997https://chromereleases.googleblog.com/2020/11/stable-channel-update-for-desktop_17.htmlhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AB2XOYF26EBHJEI6LXCBL32TGZM7UHQ4/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/S4XYJ7B6OXHZNYSA5J3DBUOFEC6WCAGW/https://nvd.nist.govhttps://www.debian.org/security/2021/dsa-4824https://github.com/barmey/XS-Search
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48654CVE-2024-2757authentication bypassCVE-2024-3194CVE-2024-33640CVE-2024-21111dosinsecure direct object referenceCVE-2024-21345
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook