Out-of-Bounds Read Vulnerability in Adobe Flash Player
CVE-2018-12824

5.9MEDIUM

Key Information:

Vendor
Adobe
Status
Adobe Flash Player 30.0.0.134 And Earlier
Vendor
CVE Published:
29 August 2018

Summary

Adobe Flash Player versions up to and including 30.0.0.134 are impacted by an out-of-bounds read vulnerability. If exploited, this could allow attackers to access sensitive information, potentially affecting the confidentiality of user data. This vulnerability highlights the importance of keeping software up-to-date and implementing security measures to protect against information disclosure risks.

Affected Version(s)

Adobe Flash Player 30.0.0.134 and earlier Adobe Flash Player 30.0.0.134 and earlier

References

http://www.securityfocus.com/bid/105066
vdb-entryx_refsource_BID
https://access.redhat.com/errata/RHSA-2018:2435
vendor-advisoryx_refsource_REDHAT
http://www.securitytracker.com/id/1041448
vdb-entryx_refsource_SECTRACK

CVSS V3.1

Score:
5.9
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.