CVE-2019-7108

7.5HIGH

Key Information:

Vendor: Adobe
Status: Adobe Flash Player
Vendor: CVE Published:; 23 May 2019

Summary

Adobe Flash Player versions 32.0.0.156 and earlier, 32.0.0.156 and earlier, and 32.0.0.156 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure .

Affected Version(s)

Adobe Flash Player 32.0.0.156 and earlier, 32.0.0.156 and earlier, and 32.0.0.156 and earlier versions

References

https://helpx.adobe.com/security/products/flash-player/ap...

x_refsource_CONFIRM

https://security.gentoo.org/glsa/201908-21

vendor-advisoryx_refsource_GENTOO

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
May 23, 2019
Vulnerability Reserved
Jan 28, 2019