Use After Free Vulnerability in Adobe Flash Player
CVE-2019-7837

8.8HIGH

Key Information:

Vendor
Adobe
Status
Adobe Flash Player
Vendor
CVE Published:
22 May 2019

Summary

Adobe Flash Player contains a use after free vulnerability which affects versions 32.0.0.171 and earlier. This vulnerability could potentially allow an attacker to execute arbitrary code on the system, leading to a breach in security. Users are advised to update their software to protect against exploitation of this vulnerability, as successful attacks could compromise the integrity and confidentiality of their data.

Affected Version(s)

Adobe Flash Player 32.0.0.171 and earlier, 32.0.0.171 and earlier, and 32.0.0.171  and earlier versions

References

https://helpx.adobe.com/security/products/flash-player/ap...
x_refsource_CONFIRM
http://www.securityfocus.com/bid/108312
vdb-entryx_refsource_BID
https://www.zerodayinitiative.com/advisories/ZDI-19-498/
x_refsource_MISC

CVSS V3.1

Score:
8.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.