CVE-2018-15982
7.8
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Summary
Flash Player versions 31.0.0.153 and earlier, and 31.0.0.108 and earlier have a use after free vulnerability. Successful exploitation could lead to arbitrary code execution.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://access.redhat.com/errata/RHSA-2018:3795
- https://helpx.adobe.com/security/products/flash-player/apsb18-42.html
- https://www.exploit-db.com/exploits/46051/
- http://www.securityfocus.com/bid/106116
CISA ADP Vulnrichment
- SSVC:
- Exploitation: active
- Automatable: no
- Technical Impact: total
Additional References
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2018-15982
- https://github.com/cisagov/vulnrichment/issues/195
References
- https://access.redhat.com/errata/RHSA-2018:3795
- https://helpx.adobe.com/security/products/flash-player/apsb18-42.html
- https://www.exploit-db.com/exploits/46051/
- http://www.securityfocus.com/bid/106116
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.