First published: Tue Feb 11 2020(Updated: )
Adobe Flash Player versions 32.0.0.321 and earlier, 32.0.0.314 and earlier, 32.0.0.321 and earlier, and 32.0.0.255 and earlier have a type confusion vulnerability. Successful exploitation could lead to arbitrary code execution.
Credit: psirt@adobe.com
Affected Software | Affected Version | How to fix |
---|---|---|
redhat/flash-plugin | <32.0.0.330 | 32.0.0.330 |
Adobe Flash Player | <32.0.0.321 | |
Apple macOS | ||
Microsoft Windows | ||
Adobe Flash Player | <32.0.0.314 | |
Linux Linux kernel | ||
Adobe Flash Player | <=32.0.0.321 | |
Google Chrome OS | ||
Adobe Flash Player | <=32.0.0.255 | |
Adobe Flash Player | <=32.0.0.255 | |
Microsoft Windows 10 | ||
Microsoft Windows 8.1 | ||
Redhat Enterprise Linux Desktop | =6.0 | |
Redhat Enterprise Linux Server | =6.0 | |
Redhat Enterprise Linux Workstation | =6.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2020-3757 is a type confusion vulnerability in Adobe Flash Player.
CVE-2020-3757 has a severity score of 8.8, which is considered critical.
Adobe Flash Player versions 32.0.0.321 and earlier, 32.0.0.314 and earlier, 32.0.0.321 and earlier, and 32.0.0.255 and earlier are affected by CVE-2020-3757.
Successful exploitation of CVE-2020-3757 could lead to arbitrary code execution.
To fix CVE-2020-3757, update Adobe Flash Player to version 32.0.0.330 or later.