Out-of-Bounds Read Vulnerability in Adobe Flash Player Software
CVE-2019-7108

7.5HIGH

Key Information:

Vendor: Adobe
Status: Adobe Flash Player
Vendor: CVE Published:; 23 May 2019

What is CVE-2019-7108?

An out-of-bounds read vulnerability exists in Adobe Flash Player that affects versions 32.0.0.156 and earlier. If successfully exploited, this flaw could enable attackers to access sensitive information that should not be disclosed. The risk associated with this vulnerability requires immediate attention to mitigate potential security breaches.

Affected Version(s)

Adobe Flash Player 32.0.0.156 and earlier, 32.0.0.156 and earlier, and 32.0.0.156 and earlier versions

References

https://helpx.adobe.com/security/products/flash-player/ap...

x_refsource_CONFIRM

https://security.gentoo.org/glsa/201908-21

vendor-advisoryx_refsource_GENTOO

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 23, 2019
Vulnerability Reserved
Jan 28, 2019