Type Confusion Vulnerability in Adobe Flash Player
CVE-2018-5007

8.8HIGH

Key Information:

Vendor
Adobe
Status
Adobe Flash Player 30.0.0.113 And Earlier Versions
Vendor
CVE Published:
20 July 2018

Summary

The Type Confusion vulnerability in Adobe Flash Player allows an attacker to manipulate the way data is processed, leading to potential arbitrary code execution in the context of the current user. If exploited, this flaw can enable unauthorized actions on the system or access to sensitive information, highlighting the importance of maintaining updated software to mitigate risks.

Affected Version(s)

Adobe Flash Player 30.0.0.113 and earlier Adobe Flash Player 30.0.0.113 and earlier versions

References

https://helpx.adobe.com/security/products/flash-player/ap...
x_refsource_CONFIRM
http://www.securitytracker.com/id/1041248
vdb-entryx_refsource_SECTRACK
http://www.securityfocus.com/bid/104698
vdb-entryx_refsource_BID

CVSS V3.1

Score:
8.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.