Adobe Flash Player vulnerabilities

1,081 known vulnerabilities affecting adobe/flash_player.

Total CVEs

1,081

CISA KEV

actively exploited

Public exploits

183

Exploited in wild

Severity breakdown

CRITICAL607HIGH369MEDIUM104LOW1

Vulnerabilities

Page 16 of 55

CVE-2016-1030HIGHCVSS 8.1≤ 11.2.202.577≤ 18.0.0.333+1 more2016-04-09

CVE-2016-1030 [HIGH] CVE-2016-1030: Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to bypass intended access restrictions via unspecified vectors.

nvd

CVE-2016-1029HIGHCVSS 8.8≤ 11.2.202.577≤ 18.0.0.333+1 more2016-04-09

CVE-2016-1029 [HIGH] CVE-2016-1029: Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-1012, CVE-2016-1020, CVE-2016-1021, CVE-2016-1022, CVE-2016-1023, CVE-2016-1

nvd

CVE-2016-1011HIGHCVSS 8.8PoC≤ 11.2.202.577≤ 18.0.0.333+1 more2016-04-09

CVE-2016-1011 [HIGH] CWE-416 CVE-2016-1011: Use-after-free vulnerability in Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21 Use-after-free vulnerability in Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-1013, CVE-2016-1016, CVE-2016-1017, and CVE-2016-1031.

nvd

CVE-2016-1023HIGHCVSS 8.8≤ 11.2.202.577≤ 18.0.0.333+1 more2016-04-09

CVE-2016-1023 [HIGH] CVE-2016-1023: Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-1012, CVE-2016-1020, CVE-2016-1021, CVE-2016-1022, CVE-2016-1024, CVE-2016-1

nvd

CVE-2016-1013HIGHCVSS 8.8PoC≤ 11.2.202.577≤ 18.0.0.333+1 more2016-04-09

CVE-2016-1013 [HIGH] CVE-2016-1013: Use-after-free vulnerability in Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21 Use-after-free vulnerability in Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-1011, CVE-2016-1016, CVE-2016-1017, and CVE-2016-1031.

nvd

CVE-2016-1020HIGHCVSS 8.8≤ 11.2.202.577≤ 18.0.0.333+1 more2016-04-09

CVE-2016-1020 [HIGH] CVE-2016-1020: Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-1012, CVE-2016-1021, CVE-2016-1022, CVE-2016-1023, CVE-2016-1024, CVE-2016-1

nvd

CVE-2016-1026HIGHCVSS 8.8≤ 11.2.202.577≤ 18.0.0.333+1 more2016-04-09

CVE-2016-1026 [HIGH] CVE-2016-1026: Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-1012, CVE-2016-1020, CVE-2016-1021, CVE-2016-1022, CVE-2016-1023, CVE-2016-1

nvd

CVE-2016-1022HIGHCVSS 8.8≤ 11.2.202.577≤ 18.0.0.333+1 more2016-04-09

CVE-2016-1022 [HIGH] CVE-2016-1022: Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-1012, CVE-2016-1020, CVE-2016-1021, CVE-2016-1023, CVE-2016-1024, CVE-2016-1

nvd

CVE-2016-1027HIGHCVSS 8.8≤ 11.2.202.577≤ 18.0.0.333+1 more2016-04-09

CVE-2016-1027 [HIGH] CVE-2016-1027: Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-1012, CVE-2016-1020, CVE-2016-1021, CVE-2016-1022, CVE-2016-1023, CVE-2016-1

nvd

CVE-2016-1021HIGHCVSS 8.8≤ 11.2.202.577≤ 18.0.0.333+1 more2016-04-09

CVE-2016-1021 [HIGH] CVE-2016-1021: Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-1012, CVE-2016-1020, CVE-2016-1022, CVE-2016-1023, CVE-2016-1024, CVE-2016-1

nvd

CVE-2016-1006HIGHCVSS 8.1≤ 11.2.202.577≤ 18.0.0.333+1 more2016-04-09

CVE-2016-1006 [HIGH] CVE-2016-1006: Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to bypass the ASLR protection mechanism via JIT data.

nvd

CVE-2016-1025HIGHCVSS 8.8≤ 11.2.202.577≤ 18.0.0.333+1 more2016-04-09

CVE-2016-1025 [HIGH] CVE-2016-1025: Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-1012, CVE-2016-1020, CVE-2016-1021, CVE-2016-1022, CVE-2016-1023, CVE-2016-1

nvd

CVE-2016-1012HIGHCVSS 8.8≤ 11.2.202.577≤ 18.0.0.333+1 more2016-04-09

CVE-2016-1012 [HIGH] CWE-787 CVE-2016-1012: Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-1020, CVE-2016-1021, CVE-2016-1022, CVE-2016-1023, CVE-2016-1024, CV

nvd

CVE-2016-1017HIGHCVSS 8.8≤ 11.2.202.577≤ 18.0.0.333+1 more2016-04-09

CVE-2016-1017 [HIGH] CVE-2016-1017: Use-after-free vulnerability in the LoadVars.decode function in Adobe Flash Player before 18.0.0.343 Use-after-free vulnerability in the LoadVars.decode function in Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-1011, CVE-2016-1013, CVE-2016-1016, and CVE-2016-1031.

nvd

CVE-2016-1024HIGHCVSS 8.8≤ 11.2.202.577≤ 18.0.0.333+1 more2016-04-09

CVE-2016-1024 [HIGH] CVE-2016-1024: Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-1012, CVE-2016-1020, CVE-2016-1021, CVE-2016-1022, CVE-2016-1023, CVE-2016-1

nvd

CVE-2016-1033HIGHCVSS 8.8≤ 11.2.202.577≤ 18.0.0.333+1 more2016-04-09

CVE-2016-1033 [HIGH] CVE-2016-1033: Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-1012, CVE-2016-1020, CVE-2016-1021, CVE-2016-1022, CVE-2016-1023, CVE-2016-1

nvd

CVE-2016-1016HIGHCVSS 8.8≤ 11.2.202.577≤ 18.0.0.333+1 more2016-04-09

CVE-2016-1016 [HIGH] CVE-2016-1016: Use-after-free vulnerability in the Transform object implementation in Adobe Flash Player before 18. Use-after-free vulnerability in the Transform object implementation in Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code via a flash.geom.Matrix callback, a different vulnerability than CVE-2016-1011, CVE-2016-1013, CVE-2016-1017, and CVE-2

nvd

CVE-2016-1032HIGHCVSS 8.8≤ 11.2.202.577≤ 18.0.0.333+1 more2016-04-09

CVE-2016-1032 [HIGH] CVE-2016-1032: Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-1012, CVE-2016-1020, CVE-2016-1021, CVE-2016-1022, CVE-2016-1023, CVE-2016-1

nvd

CVE-2016-1018HIGHCVSS 8.8≤ 11.2.202.577≤ 18.0.0.333+1 more2016-04-09

CVE-2016-1018 [HIGH] CWE-787 CVE-2016-1018: Stack-based buffer overflow in Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21. Stack-based buffer overflow in Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code via crafted JPEG-XR data.

nvd

CVE-2016-1019CRITICALCVSS 9.8KEV≤ 18.0.0.333≤ 21.0.0.197+1 more2016-04-07

CVE-2016-1019 [CRITICAL] CVE-2016-1019: Adobe Flash Player 21.0.0.197 and earlier allows remote attackers to cause a denial of service (appl Adobe Flash Player 21.0.0.197 and earlier allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via unspecified vectors, as exploited in the wild in April 2016.

nvd

← Previous16 / 55Next →