CVE-2018-12825
First published: Tue Aug 14 2018(Updated: )
Adobe Flash Player 30.0.0.134 and earlier have a security bypass vulnerability. Successful exploitation could lead to security mitigation bypass.
Credit: psirt@adobe.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/flash-plugin | <30.0.0.154 | 30.0.0.154 |
| Macromedia Flash Player | <=30.0.0.154 | |
| Apple iOS and macOS | ||
| Linux Kernel | ||
| Microsoft Windows Operating System | ||
| Macromedia Flash Player | <=30.0.0.154 | |
| Chrome OS | ||
| Macromedia Flash Player | <=30.0.0.154 | |
| Macromedia Flash Player | <=30.0.0.154 | |
| Windows 10 | ||
| Microsoft Windows | ||
| Red Hat Enterprise Linux Desktop | =6.0 | |
| Red Hat Enterprise Linux Server | =6.0 | |
| Red Hat Enterprise Linux Workstation | =6.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://access.redhat.com/security/cve/CVE-2018-12825
- https://helpx.adobe.com/security/products/flash-player/apsb18-25.html
- https://access.redhat.com/errata/RHSA-2018:2435
- https://bugzilla.redhat.com/show_bug.cgi?id=1616028
- http://www.securityfocus.com/bid/105070
- http://www.securitytracker.com/id/1041448
Frequently Asked Questions
What is the severity of CVE-2018-12825?
The severity of CVE-2018-12825 is critical with a severity value of 9.8.
What is the affected software for CVE-2018-12825?
The affected software for CVE-2018-12825 includes Adobe Flash Player versions earlier than 30.0.0.154.
How can the security bypass vulnerability in Adobe Flash Player be exploited?
The security bypass vulnerability in Adobe Flash Player can be exploited to bypass security mitigations.
How can the security bypass vulnerability in Adobe Flash Player be fixed?
To fix the security bypass vulnerability in Adobe Flash Player, update to version 30.0.0.154 or later.
Where can I find more information about CVE-2018-12825?
You can find more information about CVE-2018-12825 on the following websites: [SecurityFocus](http://www.securityfocus.com/bid/105070), [SecurityTracker](http://www.securitytracker.com/id/1041448), and [Red Hat Advisory](https://access.redhat.com/errata/RHSA-2018:2435).
- agent/references
- agent/type
- agent/first-publish-date
- agent/author
- agent/description
- agent/remedy
- agent/severity
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2018-12825
- agent/software-canonical-lookup
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- package-manager/redhat
- vendor/adobe
- canonical/macromedia flash player
- version/macromedia flash player/30.0.0.154
- vendor/apple
- canonical/apple ios and macos
- vendor/linux
- canonical/linux kernel
- vendor/microsoft
- canonical/microsoft windows operating system
- vendor/google
- canonical/chrome os
- canonical/windows 10
- canonical/microsoft windows
- vendor/redhat
- canonical/red hat enterprise linux desktop
- version/red hat enterprise linux desktop/6.0
- canonical/red hat enterprise linux server
- version/red hat enterprise linux server/6.0
- canonical/red hat enterprise linux workstation
- version/red hat enterprise linux workstation/6.0