KLA11496
ACE vulnerabilities in Adobe Flash Player
Updated: 05/22/2020
Detect date
?
06/11/2019
Severity
?
Critical
Description

Multiple vulnerabilities was found in Adobe Flash Player. Malicious users can exploit these vulnerabilities to execute arbitrary code and obtain sensitive information.

Below is a complete list of vulnerabilities:

  1. A use-after-free vulnerability can be exploited remotely to execute arbitrary code;
  2. A same origin method execution vulnerability can be exploited remotely to obtain sensitive information;
Affected products

Adobe Flash Player "Desktop Runtime" 32.0.0.192 and earlier 
Adobe Flash Player "for Google Chrome" 32.0.0.192 and earlier
Adobe Flash Player "for Microsoft Edge and Internet Explorer 11" 32.0.0.192  and earlier

Solution

Update to the latest version
Flash Player Download Center

Original advisories

APSB19-30

Impacts
?
ACE 
[?]

OSI 
[?]
Related products
Adobe Flash Player ActiveX
Adobe Flash Player NPAPI
Adobe Flash Player PPAPI
CVE-IDS
?
CVE-2019-78450.0Unknown
CVE-2019-80757.5Critical