Vulnerabilities > Adobe

DATE CVE VULNERABILITY TITLE RISK
2017-03-14 CVE-2017-3002 Use After Free vulnerability in Adobe Flash Player
Adobe Flash Player versions 24.0.0.221 and earlier have an exploitable use after free vulnerability in the ActionScript2 TextField object related to the variable property.
network
low complexity
adobe CWE-416
8.8
2017-03-14 CVE-2017-3001 Use After Free vulnerability in Adobe Flash Player
Adobe Flash Player versions 24.0.0.221 and earlier have an exploitable use after free vulnerability related to garbage collection in the ActionScript 2 VM.
network
low complexity
adobe CWE-416
8.8
2017-03-14 CVE-2017-3000 Unspecified vulnerability in Adobe Flash Player
Adobe Flash Player versions 24.0.0.221 and earlier have a vulnerability in the random number generator used for constant blinding.
network
low complexity
adobe
6.5
2017-03-14 CVE-2017-2999 Out-of-bounds Write vulnerability in Adobe Flash Player
Adobe Flash Player versions 24.0.0.221 and earlier have an exploitable memory corruption vulnerability in the Primetime TVSDK functionality related to hosting playback surface.
network
low complexity
adobe CWE-787
8.8
2017-03-14 CVE-2017-2998 Out-of-bounds Write vulnerability in Adobe Flash Player
Adobe Flash Player versions 24.0.0.221 and earlier have an exploitable memory corruption vulnerability in the Primetime TVSDK API functionality related to timeline interactions.
network
low complexity
adobe CWE-787
8.8
2017-03-14 CVE-2017-2997 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Adobe Flash Player
Adobe Flash Player versions 24.0.0.221 and earlier have an exploitable buffer overflow / underflow vulnerability in the Primetime TVSDK that supports customizing ad information.
network
low complexity
adobe CWE-119
8.8
2017-03-14 CVE-2017-2983 Untrusted Search Path vulnerability in Adobe Shockwave Player
Adobe Shockwave versions 12.2.7.197 and earlier have an insecure library loading (DLL hijacking) vulnerability.
local
low complexity
adobe CWE-426
7.8
2017-02-15 CVE-2017-2996 Out-of-bounds Write vulnerability in Adobe Flash Player and Flash Player Desktop Runtime
Adobe Flash Player versions 24.0.0.194 and earlier have an exploitable memory corruption vulnerability in Primetime SDK.
network
low complexity
adobe CWE-787
8.8
2017-02-15 CVE-2017-2995 Type Confusion vulnerability in Adobe Flash Player and Flash Player Desktop Runtime
Adobe Flash Player versions 24.0.0.194 and earlier have an exploitable type confusion vulnerability related to the MessageChannel class.
network
low complexity
adobe CWE-843
8.8
2017-02-15 CVE-2017-2994 Use After Free vulnerability in Adobe Flash Player
Adobe Flash Player versions 24.0.0.194 and earlier have an exploitable use after free vulnerability in Primetime SDK event dispatch.
network
low complexity
adobe CWE-416
8.8