Integer Overflow Vulnerability in Adobe Flash Player by Adobe
CVE-2018-5000

6.5MEDIUM

Key Information:

Vendor

Adobe
Status
Adobe Flash Player 29.0.0.171 And Earlier Versions
Vendor
CVE Published:
9 July 2018

What is CVE-2018-5000?

Adobe Flash Player versions 29.0.0.171 and earlier are susceptible to an Integer Overflow vulnerability that may allow attackers to exploit the flaw for unauthorized access to information. This vulnerability can enable a user to manipulate the integer values handled by the software, potentially leading to unintended behavior or disclosure of sensitive data. It is essential for users to update their Flash Player to the latest version to mitigate any risks associated with this vulnerability.

Affected Version(s)

Adobe Flash Player 29.0.0.171 and earlier Adobe Flash Player 29.0.0.171 and earlier versions

References

https://access.redhat.com/errata/RHSA-2018:1827
vendor-advisoryx_refsource_REDHAT
http://www.securitytracker.com/id/1041058
vdb-entryx_refsource_SECTRACK
https://helpx.adobe.com/security/products/flash-player/ap...
x_refsource_MISC

CVSS V3.1

Score:
6.5
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.