First published: Tue Mar 13 2018(Updated: )
Adobe Flash Player versions 28.0.0.161 and earlier have an exploitable use after free vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the current user.
Credit: psirt@adobe.com
Affected Software | Affected Version | How to fix |
---|---|---|
Adobe Flash Player Desktop Runtime | <=28.0.0.161 | |
Apple Mac OS X | ||
Linux Linux kernel | ||
Microsoft Windows | ||
Adobe Flash Player | <=28.0.0.161 | |
Google Chrome OS | ||
Adobe Flash Player | <=28.0.0.161 | |
Adobe Flash Player | <=28.0.0.161 | |
Microsoft Windows 10 | ||
Microsoft Windows 8.1 | ||
redhat/flash-plugin | <29.0.0.113 | 29.0.0.113 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2018-4919 is a use after free vulnerability in Adobe Flash Player versions 28.0.0.161 and earlier.
The severity of CVE-2018-4919 is critical with a severity score of 8.8.
Successful exploitation of CVE-2018-4919 could lead to arbitrary code execution in the context of the current user.
To fix CVE-2018-4919, update Adobe Flash Player to version 29.0.0.113 or later.
You can find more information about CVE-2018-4919 at the following references: [1] [2] [3]