First published: Tue Apr 10 2018(Updated: )
Adobe Flash Player versions 29.0.0.113 and earlier have an exploitable Use-After-Free vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the current user.
Credit: psirt@adobe.com
Affected Software | Affected Version | How to fix |
---|---|---|
Adobe Flash Player | <=29.0.0.113 | |
Adobe Flash Player | <=29.0.0.113 | |
Microsoft Windows 10 | ||
Microsoft Windows 8.1 | ||
Adobe Flash Player | <=29.0.0.113 | |
Apple Mac OS X | ||
Google Chrome OS | ||
Linux Linux kernel | ||
Microsoft Windows | ||
Adobe Flash Player Desktop Runtime | <=29.0.0.113 | |
redhat/flash-plugin | <29.0.0.140 | 29.0.0.140 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2018-4932 is a vulnerability in Adobe Flash Player versions 29.0.0.113 and earlier, allowing for arbitrary code execution.
CVE-2018-4932 has a severity value of 8.8, which is considered critical.
Adobe Flash Player versions 29.0.0.113 and earlier are affected by CVE-2018-4932.
To fix CVE-2018-4932, update Adobe Flash Player to version 29.0.0.140 or later.
You can find more information about CVE-2018-4932 at the following references: [http://www.securityfocus.com/bid/103708](http://www.securityfocus.com/bid/103708), [http://www.securitytracker.com/id/1040648](http://www.securitytracker.com/id/1040648), [https://access.redhat.com/errata/RHSA-2018:1119](https://access.redhat.com/errata/RHSA-2018:1119).