Adobe Flash Player vulnerabilities

1,081 known vulnerabilities affecting adobe/flash_player.

Total CVEs

1,081

CISA KEV

actively exploited

Public exploits

183

Exploited in wild

Severity breakdown

CRITICAL607HIGH369MEDIUM104LOW1

Vulnerabilities

Page 21 of 55

CVE-2015-8442CRITICALCVSS 9.3≤ 18.0.0.261v19.0.0.185+4 more2015-12-10

CVE-2015-8442 [CRITICAL] CVE-2015-8442: Use-after-free vulnerability in the MovieClip object implementation in Adobe Flash Player before 18. Use-after-free vulnerability in the MovieClip object implementation in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allows attackers to execute arbitrary code via a cra

nvd

CVE-2015-8056CRITICALCVSS 10.0≤ 18.0.0.261v19.0.0.185+4 more2015-12-10

CVE-2015-8056 [CRITICAL] CVE-2015-8056: Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0 Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerabili

nvd

CVE-2015-8068CRITICALCVSS 10.0≤ 11.2.202.548≤ 18.0.0.261+4 more2015-12-10

CVE-2015-8068 [CRITICAL] CVE-2015-8068: Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0 Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerabili

nvd

CVE-2015-8065CRITICALCVSS 10.0≤ 11.2.202.548≤ 18.0.0.261+4 more2015-12-10

CVE-2015-8065 [CRITICAL] CVE-2015-8065: Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0 Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerabili

nvd

CVE-2015-8452CRITICALCVSS 10.0≤ 18.0.0.261v19.0.0.185+4 more2015-12-10

CVE-2015-8452 [CRITICAL] CVE-2015-8452: Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0 Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerabili

nvd

CVE-2015-8405CRITICALCVSS 10.0≤ 11.2.202.548≤ 18.0.0.261+4 more2015-12-10

CVE-2015-8405 [CRITICAL] CVE-2015-8405: Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0 Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerabili

nvd

CVE-2015-8434CRITICALCVSS 10.0PoC≤ 18.0.0.261v19.0.0.185+4 more2015-12-10

CVE-2015-8434 [CRITICAL] CVE-2015-8434: Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0 Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerabili

nvd

CVE-2015-8070CRITICALCVSS 10.0≤ 11.2.202.548≤ 18.0.0.261+4 more2015-12-10

CVE-2015-8070 [CRITICAL] CVE-2015-8070: Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0 Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerabili

nvd

CVE-2015-8062CRITICALCVSS 10.0≤ 18.0.0.261v19.0.0.185+4 more2015-12-10

CVE-2015-8062 [CRITICAL] CVE-2015-8062: Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0 Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerabili

nvd

CVE-2015-8439CRITICALCVSS 9.3≤ 18.0.0.261v19.0.0.185+4 more2015-12-10

CVE-2015-8439 [CRITICAL] CVE-2015-8439: The SharedObject object implementation in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x bef The SharedObject object implementation in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allows attackers to execute arbitrary code by leveraging an unspecified "type con

nvd

CVE-2015-8422CRITICALCVSS 10.0PoC≤ 11.2.202.548≤ 18.0.0.261+4 more2015-12-10

CVE-2015-8422 [CRITICAL] CVE-2015-8422: Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0 Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerabili

nvd

CVE-2015-8445CRITICALCVSS 9.3≤ 11.2.202.548≤ 18.0.0.261+4 more2015-12-10

CVE-2015-8445 [CRITICAL] CWE-189 CVE-2015-8445: Integer overflow in the Shader filter implementation in Adobe Flash Player before 18.0.0.268 and 19. Integer overflow in the Shader filter implementation in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allows attackers to execute arbitrary code via a large Bitm

nvd

CVE-2015-8410CRITICALCVSS 10.0PoC≤ 18.0.0.261v19.0.0.185+4 more2015-12-10

CVE-2015-8410 [CRITICAL] CVE-2015-8410: Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0 Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerabili

nvd

CVE-2015-8457CRITICALCVSS 10.0≤ 18.0.0.261v19.0.0.185+4 more2015-12-10

CVE-2015-8457 [CRITICAL] CVE-2015-8457: Stack-based buffer overflow in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0. Stack-based buffer overflow in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerabilit

nvd

CVE-2015-8420CRITICALCVSS 10.0PoC≤ 18.0.0.261v19.0.0.185+4 more2015-12-10

CVE-2015-8420 [CRITICAL] CVE-2015-8420: Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0 Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerabili

nvd

CVE-2015-8437CRITICALCVSS 9.3≤ 11.2.202.548≤ 18.0.0.261+4 more2015-12-10

CVE-2015-8437 [CRITICAL] CVE-2015-8437: Use-after-free vulnerability in the Selection object implementation in Adobe Flash Player before 18. Use-after-free vulnerability in the Selection object implementation in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allows attackers to execute arbitrary code via a cra

nvd

CVE-2015-8409CRITICALCVSS 10.0≤ 18.0.0.261v19.0.0.185+4 more2015-12-10

CVE-2015-8409 [CRITICAL] CVE-2015-8409: Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and bef Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allow attackers to bypass intended access restrictions via unspecified vectors, a different vulnerability than CVE-2015-844

nvd

CVE-2015-8447CRITICALCVSS 9.3≤ 18.0.0.261v19.0.0.185+4 more2015-12-10

CVE-2015-8447 [CRITICAL] CVE-2015-8447: Use-after-free vulnerability in the Color object implementation in Adobe Flash Player before 18.0.0. Use-after-free vulnerability in the Color object implementation in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allows attackers to execute arbitrary code via crafted s

nvd

CVE-2015-8455CRITICALCVSS 10.0≤ 11.2.202.548≤ 18.0.0.261+4 more2015-12-10

CVE-2015-8455 [CRITICAL] CVE-2015-8455: Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and bef Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a diffe

nvd

CVE-2015-8451CRITICALCVSS 10.0≤ 11.2.202.548≤ 18.0.0.261+4 more2015-12-10

CVE-2015-8451 [CRITICAL] CVE-2015-8451: Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and bef Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a diffe

nvd

← Previous21 / 55Next →