Adobe Flash Player vulnerabilities

CVE-2017-3082 [CRITICAL] CWE-119 CVE-2017-3082: Adobe Flash Player versions 25.0.0.171 and earlier have an exploitable memory corruption vulnerabili Adobe Flash Player versions 25.0.0.171 and earlier have an exploitable memory corruption vulnerability in the LocaleID class. Successful exploitation could lead to arbitrary code execution.

CVE-2017-3083 [CRITICAL] CWE-416 CVE-2017-3083: Adobe Flash Player versions 25.0.0.171 and earlier have an exploitable use after free vulnerability Adobe Flash Player versions 25.0.0.171 and earlier have an exploitable use after free vulnerability in the Primetime SDK functionality related to the profile metadata of the media stream. Successful exploitation could lead to arbitrary code execution.

CVE-2017-3081 [CRITICAL] CWE-416 CVE-2017-3081: Adobe Flash Player versions 25.0.0.171 and earlier have an exploitable use after free vulnerability Adobe Flash Player versions 25.0.0.171 and earlier have an exploitable use after free vulnerability during internal computation caused by multiple display object mask manipulations. Successful exploitation could lead to arbitrary code execution.

CVE-2017-3070 [HIGH] CWE-787 CVE-2017-3070: Adobe Flash Player versions 25.0.0.148 and earlier have an exploitable memory corruption vulnerabili Adobe Flash Player versions 25.0.0.148 and earlier have an exploitable memory corruption vulnerability in the ConvolutionFilter class. Successful exploitation could lead to arbitrary code execution.

CVE-2017-3069 [HIGH] CWE-787 CVE-2017-3069: Adobe Flash Player versions 25.0.0.148 and earlier have an exploitable memory corruption vulnerabili Adobe Flash Player versions 25.0.0.148 and earlier have an exploitable memory corruption vulnerability in the BlendMode class. Successful exploitation could lead to arbitrary code execution.

CVE-2017-3071 [HIGH] CWE-416 CVE-2017-3071: Adobe Flash Player versions 25.0.0.148 and earlier have an exploitable use after free vulnerability Adobe Flash Player versions 25.0.0.148 and earlier have an exploitable use after free vulnerability when masking display objects. Successful exploitation could lead to arbitrary code execution.

CVE-2017-3074 [HIGH] CWE-787 CVE-2017-3074: Adobe Flash Player versions 25.0.0.148 and earlier have an exploitable memory corruption vulnerabili Adobe Flash Player versions 25.0.0.148 and earlier have an exploitable memory corruption vulnerability in the Graphics class. Successful exploitation could lead to arbitrary code execution.

CVE-2017-3068 [HIGH] CWE-787 CVE-2017-3068: Adobe Flash Player versions 25.0.0.148 and earlier have an exploitable memory corruption vulnerabili Adobe Flash Player versions 25.0.0.148 and earlier have an exploitable memory corruption vulnerability in the Advanced Video Coding engine. Successful exploitation could lead to arbitrary code execution.

CVE-2017-3072 [HIGH] CWE-787 CVE-2017-3072: Adobe Flash Player versions 25.0.0.148 and earlier have an exploitable memory corruption vulnerabili Adobe Flash Player versions 25.0.0.148 and earlier have an exploitable memory corruption vulnerability in the BitmapData class. Successful exploitation could lead to arbitrary code execution.

CVE-2017-3073 [HIGH] CWE-416 CVE-2017-3073: Adobe Flash Player versions 25.0.0.148 and earlier have an exploitable use after free vulnerability Adobe Flash Player versions 25.0.0.148 and earlier have an exploitable use after free vulnerability when handling multiple mask properties of display objects, aka memory corruption. Successful exploitation could lead to arbitrary code execution.

CVE-2017-3061 [CRITICAL] CWE-119 CVE-2017-3061: Adobe Flash Player versions 25.0.0.127 and earlier have an exploitable memory corruption vulnerabili Adobe Flash Player versions 25.0.0.127 and earlier have an exploitable memory corruption vulnerability in the SWF parser. Successful exploitation could lead to arbitrary code execution.

CVE-2017-3063 [CRITICAL] CWE-416 CVE-2017-3063: Adobe Flash Player versions 25.0.0.127 and earlier have an exploitable use after free vulnerability Adobe Flash Player versions 25.0.0.127 and earlier have an exploitable use after free vulnerability in the ActionScript2 NetStream class. Successful exploitation could lead to arbitrary code execution.

CVE-2017-3062 [CRITICAL] CWE-416 CVE-2017-3062: Adobe Flash Player versions 25.0.0.127 and earlier have an exploitable use after free vulnerability Adobe Flash Player versions 25.0.0.127 and earlier have an exploitable use after free vulnerability in ActionScript2 when creating a getter/setter property. Successful exploitation could lead to arbitrary code execution.

CVE-2017-3059 [CRITICAL] CWE-416 CVE-2017-3059: Adobe Flash Player versions 25.0.0.127 and earlier have an exploitable use after free vulnerability Adobe Flash Player versions 25.0.0.127 and earlier have an exploitable use after free vulnerability in the internal script object. Successful exploitation could lead to arbitrary code execution.

CVE-2017-3060 [CRITICAL] CWE-125 CVE-2017-3060: Adobe Flash Player versions 25.0.0.127 and earlier have an exploitable memory corruption vulnerabili Adobe Flash Player versions 25.0.0.127 and earlier have an exploitable memory corruption vulnerability in the ActionScript2 code parser. Successful exploitation could lead to arbitrary code execution.

CVE-2017-3058 [HIGH] CWE-416 CVE-2017-3058: Adobe Flash Player versions 25.0.0.127 and earlier have an exploitable use after free vulnerability Adobe Flash Player versions 25.0.0.127 and earlier have an exploitable use after free vulnerability in the sound class. Successful exploitation could lead to arbitrary code execution.

CVE-2017-3064 [HIGH] CWE-119 CVE-2017-3064: Adobe Flash Player versions 25.0.0.127 and earlier have an exploitable memory corruption vulnerabili Adobe Flash Player versions 25.0.0.127 and earlier have an exploitable memory corruption vulnerability when parsing a shape outline. Successful exploitation could lead to arbitrary code execution.

CVE-2017-2997 [HIGH] CWE-119 CVE-2017-2997: Adobe Flash Player versions 24.0.0.221 and earlier have an exploitable buffer overflow / underflow v Adobe Flash Player versions 24.0.0.221 and earlier have an exploitable buffer overflow / underflow vulnerability in the Primetime TVSDK that supports customizing ad information. Successful exploitation could lead to arbitrary code execution.

CVE-2017-3003 [HIGH] CWE-416 CVE-2017-3003: Adobe Flash Player versions 24.0.0.221 and earlier have an exploitable use after free vulnerability Adobe Flash Player versions 24.0.0.221 and earlier have an exploitable use after free vulnerability related to an interaction between the privacy user interface and the ActionScript 2 Camera object. Successful exploitation could lead to arbitrary code execution.

CVE-2017-2998 [HIGH] CWE-787 CVE-2017-2998: Adobe Flash Player versions 24.0.0.221 and earlier have an exploitable memory corruption vulnerabili Adobe Flash Player versions 24.0.0.221 and earlier have an exploitable memory corruption vulnerability in the Primetime TVSDK API functionality related to timeline interactions. Successful exploitation could lead to arbitrary code execution.