KLA11307
Multiple vulnerabilities in Adobe Flash player

Updated: 06/18/2020

Detect date ?	08/14/2018
Severity ?	High
Description	Multiple serious vulnerabilities were found in Adobe Flash Player. Malicious users can exploit these vulnerabilities to obtain sensitive information, bypass security restrictions, gain privileges. Below is a complete list of vulnerabilities: Multiple vulnerabilities in Adobe Flash Player can be exploited remotely via a specially designed SWF file to obtain sensitive information; An unspecified vulnerability in Adobe Flash Player can be exploited to bypass security restrictions; An unspecified vulnerability in Adobe Flash Player can be exploited to gain privileges. Technical details To update Adobe Flash Player ActiveX (detected as Flash.ocx) on Windows 8 and higher, install latest updates from Control Panel
Affected products	Adobe Flash Player earlier than 30.0.0.154
Solution	Update to the latest version Flash Player Download Center
Original advisories	APSB18-25
Impacts ?	OSI [?] SB [?] PE [?]
Related products	Adobe Flash Player ActiveX Adobe Flash Player NPAPI Adobe Flash Player PPAPI
CVE-IDS ?	CVE-2018-128245.9High CVE-2018-128259.8Critical CVE-2018-128267.5Critical CVE-2018-128277.5Critical CVE-2018-128289.8Critical
Exploitation	The following public exploits exists for this vulnerability: https://www.exploit-db.com/exploits/45268 Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

KLA11307Multiple vulnerabilities in Adobe Flash player