Adobe Flash Player vulnerabilities
1,081 known vulnerabilities affecting adobe/flash_player.
Total CVEs
1,081
CISA KEV
36
actively exploited
Public exploits
183
Exploited in wild
46
Severity breakdown
CRITICAL607HIGH369MEDIUM104LOW1
Vulnerabilities
Page 48 of 55
CVE-2011-0628CRITICALCVSS 9.3≤ 10.2.159.1v6.0.21.0+82 more2011-05-31
CVE-2011-0628 [CRITICAL] CWE-189 CVE-2011-0628: Integer overflow in Adobe Flash Player before 10.3.181.14 on Windows, Mac OS X, Linux, and Solaris a
Integer overflow in Adobe Flash Player before 10.3.181.14 on Windows, Mac OS X, Linux, and Solaris and before 10.3.185.21 on Android allows remote attackers to execute arbitrary code via ActionScript that improperly handles a long array object.
nvd
CVE-2011-0624CRITICALCVSS 9.3≤ 10.2.159.1v6.0.21.0+82 more2011-05-13
CVE-2011-0624 [CRITICAL] CVE-2011-0624: Adobe Flash Player before 10.3.181.14 on Windows, Mac OS X, Linux, and Solaris and before 10.3.185.2
Adobe Flash Player before 10.3.181.14 on Windows, Mac OS X, Linux, and Solaris and before 10.3.185.21 on Android allows attackers to execute arbitrary code via unspecified vectors, related to a "bounds checking" issue, a different vulnerability than CVE-2011-0623, CVE-2011-0625, and CVE-2011-0626.
nvd
CVE-2011-0621CRITICALCVSS 9.3≤ 10.2.159.1v6.0.21.0+82 more2011-05-13
CVE-2011-0621 [CRITICAL] CVE-2011-0621: Adobe Flash Player before 10.3.181.14 on Windows, Mac OS X, Linux, and Solaris and before 10.3.185.2
Adobe Flash Player before 10.3.181.14 on Windows, Mac OS X, Linux, and Solaris and before 10.3.185.21 on Android allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2011-0619, CVE-2011-0620, and CVE-2011-0622.
nvd
CVE-2011-0627CRITICALCVSS 9.3Exploited≤ 10.2.159.1v6.0.21.0+82 more2011-05-13
CVE-2011-0627 [CRITICAL] CWE-20 CVE-2011-0627: Adobe Flash Player before 10.3.181.14 on Windows, Mac OS X, Linux, and Solaris and before 10.3.185.2
Adobe Flash Player before 10.3.181.14 on Windows, Mac OS X, Linux, and Solaris and before 10.3.185.21 on Android allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted Flash content, as possibly exploited in the wild in May 2011 by a Microsoft Office document with an embedded .swf file.
nvd
CVE-2011-0618CRITICALCVSS 9.3≤ 10.2.159.1v6.0.21.0+82 more2011-05-13
CVE-2011-0618 [CRITICAL] CWE-189 CVE-2011-0618: Integer overflow in Adobe Flash Player before 10.3.181.14 on Windows, Mac OS X, Linux, and Solaris a
Integer overflow in Adobe Flash Player before 10.3.181.14 on Windows, Mac OS X, Linux, and Solaris and before 10.3.185.21 on Android allows attackers to execute arbitrary code via unspecified vectors.
nvd
CVE-2011-0620CRITICALCVSS 9.3≤ 10.2.159.1v6.0.21.0+82 more2011-05-13
CVE-2011-0620 [CRITICAL] CVE-2011-0620: Adobe Flash Player before 10.3.181.14 on Windows, Mac OS X, Linux, and Solaris and before 10.3.185.2
Adobe Flash Player before 10.3.181.14 on Windows, Mac OS X, Linux, and Solaris and before 10.3.185.21 on Android allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2011-0619, CVE-2011-0621, and CVE-2011-0622.
nvd
CVE-2011-0619CRITICALCVSS 9.3≤ 10.2.159.1v6.0.21.0+82 more2011-05-13
CVE-2011-0619 [CRITICAL] CWE-119 CVE-2011-0619: Adobe Flash Player before 10.3.181.14 on Windows, Mac OS X, Linux, and Solaris and before 10.3.185.2
Adobe Flash Player before 10.3.181.14 on Windows, Mac OS X, Linux, and Solaris and before 10.3.185.21 on Android allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2011-0620, CVE-2011-0621, and CVE-2011-0622.
nvd
CVE-2011-0623CRITICALCVSS 9.3≤ 10.2.159.1v6.0.21.0+82 more2011-05-13
CVE-2011-0623 [CRITICAL] CWE-20 CVE-2011-0623: Adobe Flash Player before 10.3.181.14 on Windows, Mac OS X, Linux, and Solaris and before 10.3.185.2
Adobe Flash Player before 10.3.181.14 on Windows, Mac OS X, Linux, and Solaris and before 10.3.185.21 on Android allows attackers to execute arbitrary code via unspecified vectors, related to a "bounds checking" issue, a different vulnerability than CVE-2011-0624, CVE-2011-0625, and CVE-2011-0626.
nvd
CVE-2011-0622CRITICALCVSS 9.3≤ 10.2.159.1v6.0.21.0+82 more2011-05-13
CVE-2011-0622 [CRITICAL] CVE-2011-0622: Adobe Flash Player before 10.3.181.14 on Windows, Mac OS X, Linux, and Solaris and before 10.3.185.2
Adobe Flash Player before 10.3.181.14 on Windows, Mac OS X, Linux, and Solaris and before 10.3.185.21 on Android allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2011-0619, CVE-2011-0620, and CVE-2011-0621.
nvd
CVE-2011-0625CRITICALCVSS 9.3≤ 10.2.159.1v6.0.21.0+82 more2011-05-13
CVE-2011-0625 [CRITICAL] CVE-2011-0625: Adobe Flash Player before 10.3.181.14 on Windows, Mac OS X, Linux, and Solaris and before 10.3.185.2
Adobe Flash Player before 10.3.181.14 on Windows, Mac OS X, Linux, and Solaris and before 10.3.185.21 on Android allows attackers to execute arbitrary code via unspecified vectors, related to a "bounds checking" issue, a different vulnerability than CVE-2011-0623, CVE-2011-0624, and CVE-2011-0626.
nvd
CVE-2011-0626CRITICALCVSS 9.3≤ 10.2.159.1v6.0.21.0+82 more2011-05-13
CVE-2011-0626 [CRITICAL] CVE-2011-0626: Adobe Flash Player before 10.3.181.14 on Windows, Mac OS X, Linux, and Solaris and before 10.3.185.2
Adobe Flash Player before 10.3.181.14 on Windows, Mac OS X, Linux, and Solaris and before 10.3.185.21 on Android allows attackers to execute arbitrary code via unspecified vectors, related to a "bounds checking" issue, a different vulnerability than CVE-2011-0623, CVE-2011-0624, and CVE-2011-0625.
nvd
CVE-2011-0579MEDIUMCVSS 5.0≤ 10.2.159.1v6.0.21.0+82 more2011-05-13
CVE-2011-0579 [MEDIUM] CWE-200 CVE-2011-0579: Adobe Flash Player before 10.3.181.14 on Windows, Mac OS X, Linux, and Solaris and before 10.3.185.2
Adobe Flash Player before 10.3.181.14 on Windows, Mac OS X, Linux, and Solaris and before 10.3.185.21 on Android allows attackers to obtain sensitive information via unspecified vectors.
nvd
CVE-2011-0611HIGHCVSS 8.8KEVPoCfixed in 10.2.154.27≤ 10.2.156.122011-04-13
CVE-2011-0611 [HIGH] CWE-843 CVE-2011-0611: Adobe Flash Player before 10.2.154.27 on Windows, Mac OS X, Linux, and Solaris and 10.2.156.12 and e
Adobe Flash Player before 10.2.154.27 on Windows, Mac OS X, Linux, and Solaris and 10.2.156.12 and earlier on Android; Adobe AIR before 2.6.19140; and Authplay.dll (aka AuthPlayLib.bundle) in Adobe Reader 9.x before 9.4.4 and 10.x through 10.0.1 on Windows, Adobe Reader 9.x before 9.4.4 and 10.x before 10.0.3 on Mac OS X, and Adobe Acrobat 9.x before 9.
nvd
CVE-2011-0609HIGHCVSS 7.8KEVPoC≤ 10.2.154.13≤ 10.1.106.162011-03-15
CVE-2011-0609 [HIGH] CVE-2011-0609: Unspecified vulnerability in Adobe Flash Player 10.2.154.13 and earlier on Windows, Mac OS X, Linux,
Unspecified vulnerability in Adobe Flash Player 10.2.154.13 and earlier on Windows, Mac OS X, Linux, and Solaris; 10.1.106.16 and earlier on Android; Adobe AIR 2.5.1 and earlier; and Authplay.dll (aka AuthPlayLib.bundle) in Adobe Reader and Acrobat 9.x through 9.4.2 and 10.x through 10.0.1 on Windows and Mac OS X, allows remote attackers to execute arbitrary co
nvd
CVE-2011-0560CRITICALCVSS 9.3≤ 10.2.152v6.0.21.0+73 more2011-02-10
CVE-2011-0560 [CRITICAL] CVE-2011-0560: Adobe Flash Player before 10.2.152.26 allows attackers to execute arbitrary code or cause a denial o
Adobe Flash Player before 10.2.152.26 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2011-0559, CVE-2011-0561, CVE-2011-0571, CVE-2011-0572, CVE-2011-0573, CVE-2011-0574, CVE-2011-0578, CVE-2011-0607, and CVE-2011-0608.
nvd
CVE-2011-0571CRITICALCVSS 9.3≤ 10.2.152v6.0.21.0+73 more2011-02-10
CVE-2011-0571 [CRITICAL] CVE-2011-0571: Adobe Flash Player before 10.2.152.26 allows attackers to execute arbitrary code or cause a denial o
Adobe Flash Player before 10.2.152.26 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2011-0559, CVE-2011-0560, CVE-2011-0561, CVE-2011-0572, CVE-2011-0573, CVE-2011-0574, CVE-2011-0578, CVE-2011-0607, and CVE-2011-0608.
nvd
CVE-2011-0608CRITICALCVSS 9.3≤ 10.2.152v6.0.21.0+73 more2011-02-10
CVE-2011-0608 [CRITICAL] CVE-2011-0608: Adobe Flash Player before 10.2.152.26 allows attackers to execute arbitrary code or cause a denial o
Adobe Flash Player before 10.2.152.26 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2011-0559, CVE-2011-0560, CVE-2011-0561, CVE-2011-0571, CVE-2011-0572, CVE-2011-0573, CVE-2011-0574, CVE-2011-0578, and CVE-2011-0607.
nvd
CVE-2011-0572CRITICALCVSS 9.3≤ 10.2.152v6.0.21.0+73 more2011-02-10
CVE-2011-0572 [CRITICAL] CVE-2011-0572: Adobe Flash Player before 10.2.152.26 allows attackers to execute arbitrary code or cause a denial o
Adobe Flash Player before 10.2.152.26 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2011-0559, CVE-2011-0560, CVE-2011-0561, CVE-2011-0571, CVE-2011-0573, CVE-2011-0574, CVE-2011-0578, CVE-2011-0607, and CVE-2011-0608.
nvd
CVE-2011-0559CRITICALCVSS 9.3≤ 10.2.152v6.0.21.0+73 more2011-02-10
CVE-2011-0559 [CRITICAL] CWE-119 CVE-2011-0559: Adobe Flash Player before 10.2.152.26 allows attackers to execute arbitrary code or cause a denial o
Adobe Flash Player before 10.2.152.26 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted parameters to an unspecified ActionScript method that cause a parameter to be used as an object pointer, a different vulnerability than CVE-2011-0560, CVE-2011-0561, CVE-2011-0571, CVE-2011-0572, CVE-2011-0573
nvd
CVE-2011-0578CRITICALCVSS 9.3≤ 10.2.152v6.0.21.0+73 more2011-02-10
CVE-2011-0578 [CRITICAL] CVE-2011-0578: Adobe Flash Player before 10.2.152.26 allows attackers to execute arbitrary code or cause a denial o
Adobe Flash Player before 10.2.152.26 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors related to a constructor for an unspecified ActionScript3 object and improper type checking, a different vulnerability than CVE-2011-0559, CVE-2011-0560, CVE-2011-0561, CVE-2011-0571, CVE-2011-0572, CVE-20
nvd