CVE-2018-4920

Опубликовано: 13 мар. 2018

Источник: redhat

CVSS3: 8.8

EPSS Низкий

Описание

Adobe Flash Player versions 28.0.0.161 and earlier have an exploitable type confusion vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the current user.

Ссылки на источники

Дополнительная информация

Статус:

Critical

Дефект:

CWE-843

https://bugzilla.redhat.com/show_bug.cgi?id=1555030flash-plugin: Type Confusion - remote code execution vulnerability (APSB18-05)

EPSS

Процентиль: 91%

0.07186

Низкий

8.8 High

CVSS3

Связанные уязвимости

CVE-2018-4920

CVSS3: 8.8

ubuntu

больше 7 лет назад

Adobe Flash Player versions 28.0.0.161 and earlier have an exploitable type confusion vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the current user.

CVE-2018-4920

CVSS3: 8.8

nvd

больше 7 лет назад

Adobe Flash Player versions 28.0.0.161 and earlier have an exploitable type confusion vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the current user.

GHSA-j5xf-xfvf-pjw6

CVSS3: 9.8

github

больше 3 лет назад

Adobe Flash Player versions 28.0.0.161 and earlier have an exploitable type confusion vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the current user.

ADV180006

msrc

почти 8 лет назад

March 2018 Adobe Flash Security Update

EPSS

Процентиль: 91%

0.07186

Низкий

8.8 High

CVSS3