Type Confusion Vulnerability in Adobe Flash Player
CVE-2018-5007

8.8HIGH

Key Information:

Vendor: Adobe
Status: Adobe Flash Player 30.0.0.113 And Earlier Versions
Vendor: CVE Published:; 20 July 2018

🔔 Create Adobe Vulnerability Alert

What is CVE-2018-5007?

The Type Confusion vulnerability in Adobe Flash Player allows an attacker to manipulate the way data is processed, leading to potential arbitrary code execution in the context of the current user. If exploited, this flaw can enable unauthorized actions on the system or access to sensitive information, highlighting the importance of maintaining updated software to mitigate risks.

Affected Version(s)

Adobe Flash Player 30.0.0.113 and earlier Adobe Flash Player 30.0.0.113 and earlier versions

References

https://helpx.adobe.com/security/products/flash-player/ap...

x_refsource_CONFIRM

http://www.securitytracker.com/id/1041248

vdb-entryx_refsource_SECTRACK

http://www.securityfocus.com/bid/104698

vdb-entryx_refsource_BID

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 20, 2018
Vulnerability Reserved
Jan 3, 2018

.

CVE-2018-5007 : Type Confusion Vulnerability in Adobe Flash Player