CVE-2018-12825
First published: Tue Aug 14 2018(Updated: )
Adobe Flash Player 30.0.0.134 and earlier have a security bypass vulnerability. Successful exploitation could lead to security mitigation bypass.
Credit: psirt@adobe.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/flash-plugin | <30.0.0.154 | 30.0.0.154 |
| Adobe Flash Player for Internet Explorer 11 | <=30.0.0.154 | |
| Apple Mac OS X | ||
| Linux Kernel | ||
| Microsoft Windows | ||
| Adobe Flash Player for Internet Explorer 11 | <=30.0.0.154 | |
| Google Chrome OS | ||
| Adobe Flash Player for Internet Explorer 11 | <=30.0.0.154 | |
| Adobe Flash Player for Internet Explorer 11 | <=30.0.0.154 | |
| Microsoft Windows 10 | ||
| Microsoft Windows 8.1 | ||
| redhat enterprise Linux desktop | =6.0 | |
| redhat enterprise Linux server | =6.0 | |
| redhat enterprise Linux workstation | =6.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://access.redhat.com/security/cve/CVE-2018-12825
- https://helpx.adobe.com/security/products/flash-player/apsb18-25.html
- https://access.redhat.com/errata/RHSA-2018:2435
- https://bugzilla.redhat.com/show_bug.cgi?id=1616028
- http://www.securityfocus.com/bid/105070
- http://www.securitytracker.com/id/1041448
Frequently Asked Questions
What is the severity of CVE-2018-12825?
The severity of CVE-2018-12825 is critical with a severity value of 9.8.
What is the affected software for CVE-2018-12825?
The affected software for CVE-2018-12825 includes Adobe Flash Player versions earlier than 30.0.0.154.
How can the security bypass vulnerability in Adobe Flash Player be exploited?
The security bypass vulnerability in Adobe Flash Player can be exploited to bypass security mitigations.
How can the security bypass vulnerability in Adobe Flash Player be fixed?
To fix the security bypass vulnerability in Adobe Flash Player, update to version 30.0.0.154 or later.
Where can I find more information about CVE-2018-12825?
You can find more information about CVE-2018-12825 on the following websites: [SecurityFocus](http://www.securityfocus.com/bid/105070), [SecurityTracker](http://www.securitytracker.com/id/1041448), and [Red Hat Advisory](https://access.redhat.com/errata/RHSA-2018:2435).
- agent/references
- agent/type
- agent/first-publish-date
- agent/author
- agent/description
- agent/remedy
- agent/severity
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2018-12825
- agent/software-canonical-lookup
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- package-manager/redhat
- vendor/adobe
- canonical/adobe flash player for internet explorer 11
- version/adobe flash player for internet explorer 11/30.0.0.154
- vendor/apple
- canonical/apple mac os x
- vendor/linux
- canonical/linux kernel
- vendor/microsoft
- canonical/microsoft windows
- vendor/google
- canonical/google chrome os
- canonical/microsoft windows 10
- canonical/microsoft windows 8.1
- vendor/redhat
- canonical/redhat enterprise linux desktop
- version/redhat enterprise linux desktop/6.0
- canonical/redhat enterprise linux server
- version/redhat enterprise linux server/6.0
- canonical/redhat enterprise linux workstation
- version/redhat enterprise linux workstation/6.0