Adobe Flash Player vulnerabilities

1,081 known vulnerabilities affecting adobe/flash_player.

Total CVEs

1,081

CISA KEV

actively exploited

Public exploits

183

Exploited in wild

Severity breakdown

CRITICAL607HIGH369MEDIUM104LOW1

Vulnerabilities

Page 15 of 55

CVE-2016-4111HIGHCVSS 7.5≤ 21.0.0.2132016-05-11

CVE-2016-4111 [HIGH] CVE-2016-4111: Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash l Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-064.

nvd

CVE-2016-4108HIGHCVSS 7.5PoC≤ 21.0.0.2132016-05-11

CVE-2016-4108 [HIGH] CVE-2016-4108: Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash l Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-064.

nvd

CVE-2016-4109HIGHCVSS 7.5≤ 21.0.0.2132016-05-11

CVE-2016-4109 [HIGH] CVE-2016-4109: Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash l Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-064.

nvd

CVE-2016-1104HIGHCVSS 7.5PoC≤ 21.0.0.2132016-05-11

CVE-2016-1104 [HIGH] CVE-2016-1104: Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash l Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-064.

nvd

CVE-2016-4115HIGHCVSS 7.5≤ 21.0.0.2132016-05-11

CVE-2016-4115 [HIGH] CVE-2016-4115: Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash l Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-064.

nvd

CVE-2016-1103HIGHCVSS 7.5PoC≤ 21.0.0.2132016-05-11

CVE-2016-1103 [HIGH] CVE-2016-1103: Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash l Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-064.

nvd

CVE-2016-4110HIGHCVSS 7.5≤ 21.0.0.2132016-05-11

CVE-2016-4110 [HIGH] CVE-2016-4110: Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash l Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-064.

nvd

CVE-2016-1096HIGHCVSS 7.5PoC≤ 21.0.0.2132016-05-11

CVE-2016-1096 [HIGH] CVE-2016-1096: Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash l Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-064.

nvd

CVE-2016-1106HIGHCVSS 7.5PoC≤ 21.0.0.2132016-05-11

CVE-2016-1106 [HIGH] CVE-2016-1106: Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash l Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-064.

nvd

CVE-2016-4112HIGHCVSS 7.5≤ 21.0.0.2132016-05-11

CVE-2016-4112 [HIGH] CVE-2016-4112: Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash l Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-064.

nvd

CVE-2016-1101HIGHCVSS 7.5PoC≤ 21.0.0.2132016-05-11

CVE-2016-1101 [HIGH] CVE-2016-1101: Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash l Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-064.

nvd

CVE-2016-1110HIGHCVSS 7.5≤ 21.0.0.2132016-05-11

CVE-2016-1110 [HIGH] CVE-2016-1110: Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash l Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-064.

nvd

CVE-2016-1097HIGHCVSS 7.5≤ 21.0.0.2132016-05-11

CVE-2016-1097 [HIGH] CVE-2016-1097: Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash l Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-064.

nvd

CVE-2016-1099HIGHCVSS 7.5≤ 21.0.0.2132016-05-11

CVE-2016-1099 [HIGH] CVE-2016-1099: Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash l Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-064.

nvd

CVE-2016-4116HIGHCVSS 7.5≤ 21.0.0.2132016-05-11

CVE-2016-4116 [HIGH] CVE-2016-4116: Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash l Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-064.

nvd

CVE-2015-8823HIGHCVSS 8.8≤ 19.0.0.245≤ 18.0.0.261+1 more2016-04-22

CVE-2015-8823 [HIGH] CVE-2015-8823: Use-after-free vulnerability in the TextField object implementation in Adobe Flash Player before 18. Use-after-free vulnerability in the TextField object implementation in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allows attackers to execute arbitrary code via crafted t

nvd

CVE-2016-1031HIGHCVSS 8.8≤ 11.2.202.577≤ 18.0.0.333+1 more2016-04-09

CVE-2016-1031 [HIGH] CVE-2016-1031: Use-after-free vulnerability in Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21 Use-after-free vulnerability in Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-1011, CVE-2016-1013, CVE-2016-1016, and CVE-2016-1017.

nvd

CVE-2016-1015HIGHCVSS 8.8≤ 11.2.202.577≤ 18.0.0.333+1 more2016-04-09

CVE-2016-1015 [HIGH] CWE-843 CVE-2016-1015: Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code by overriding NetConnection object properties to leverage an unspecified "type confusion," a different vulnerability than CVE-2016-1019.

nvd

CVE-2016-1028HIGHCVSS 8.8≤ 11.2.202.577≤ 18.0.0.333+1 more2016-04-09

CVE-2016-1028 [HIGH] CVE-2016-1028: Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-1012, CVE-2016-1020, CVE-2016-1021, CVE-2016-1022, CVE-2016-1023, CVE-2016-1

nvd

CVE-2016-1014HIGHCVSS 7.3≤ 11.2.202.577≤ 18.0.0.333+1 more2016-04-09

CVE-2016-1014 [HIGH] CWE-426 CVE-2016-1014: Untrusted search path vulnerability in Adobe Flash Player before 18.0.0.343 and 19.x through 21.x be Untrusted search path vulnerability in Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows local users to gain privileges via a Trojan horse resource in an unspecified directory.

nvd

← Previous15 / 55Next →