CVE-2010-2184Improper Restriction of Operations within the Bounds of a Memory Buffer in Adobe AIR

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer54 documents5 sources
Severity
9.3CRITICALNVD
EPSS
0.9%
top 24.28%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Adobe AIRAdobe Flash PlayerMacromedia Flash Player
Timeline
PublishedJun 15
Latest updateMay 14

Description

Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-2160, CVE-2010-2165, CVE-2010-2166, CVE-2010-2171, CVE-2010-2175, CVE-2010-2176, CVE-2010-2177, CVE-2010-2178, CVE-2010-2180, CVE-2010-2182, CVE-2010-2187, and CVE-2010-2188.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages3 packages

NVDadobe/flash_player10.0.45.2+54
NVDadobe/air1.5.3.9130+6
NVDmacromedia/flash_player5 versions+4

Patches

Patch: www.adobe.comPatch: www.adobe.com

🔴Vulnerability Details

26
GHSA
GHSA-4jvw-qg24-7qcr: Adobe Flash Player before 92022-05-14
GHSA
GHSA-j8jx-4gq3-2fmw: Adobe Flash Player before 92022-05-14
GHSA
GHSA-33jv-mx9r-jr3q: Adobe Flash Player before 92022-05-14
GHSA
GHSA-qrjj-37j4-wq7q: Adobe Flash Player before 92022-05-14
GHSA
GHSA-hgcv-r3v9-7mc9: Adobe Flash Player before 92022-05-14

📋Vendor Advisories

14
Red Hat
flash-plugin: multiple security flaws (APSB10-14)2010-06-10
Red Hat
flash-plugin: multiple security flaws (APSB10-14)2010-06-10
Red Hat
flash-plugin: multiple security flaws (APSB10-14)2010-06-10
Red Hat
flash-plugin: multiple security flaws (APSB10-14)2010-06-10
Red Hat
flash-plugin: multiple security flaws (APSB10-14)2010-06-10

💬Community

1
Bugzilla
flash-plugin: multiple security flaws (APSB10-14)2010-06-10
CVE-2010-2184 — Adobe AIR vulnerability | cvebase