KLA11284
Multiple vulnerabilities in Adobe Flash Player
Updated: 11/06/2018
CVSS
?
7.5
Detect date
?
07/10/2018
Severity
?
Critical
Description

Multiple serious vulnerabilities were found in Adobe Flash Player. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code.

Below is a complete list of vulnerabilities:

  1. A out-of-bounds read vulnerability can be exploited remotely via specially crafted SWF file to obtain sensitive information;
  2. A type confusion vulnerability can be exploited remotely via specially crafted SWF file to execute arbitrary code.
Affected products

Adobe Flash Player earlier than 30.0.0.134

Solution

Update to the latest version
Flash Player Download Center

Original advisories

APSB18-24

Impacts
?
ACE 
[?]

OSI 
[?]
Related products
Adobe Flash Player ActiveX
Adobe Flash Player NPAPI
Adobe Flash Player PPAPI
CVE-IDS
?

CVE-2018-5007
CVE-2018-5008