Vulnerability CVE-2018-4920: Information
Description
Adobe Flash Player versions 28.0.0.161 and earlier have an exploitable type confusion vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the current user.
Severity: HIGH (8.8) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Fixed packages
Package name | Branch | Fixed in version | Version from repository | Errata ID | Task # | State |
---|---|---|---|---|---|---|
adobe-flash-player-ppapi | p9 | 29-alt1.S1 | 32-alt118 | ALT-PU-2018-1663-1 | 205651 | Fixed |
adobe-flash-player-ppapi | p8 | 29-alt1.M80P.1 | 32-alt118 | ALT-PU-2018-1675-1 | 205652 | Fixed |
adobe-flash-player-ppapi | c9f2 | 29-alt1.S1 | 32-alt115 | ALT-PU-2018-1663-1 | 205651 | Fixed |
References to Advisories, Solutions, and Tools
Hyperlink | Resource |
---|---|
https://helpx.adobe.com/security/products/flash-player/apsb18-05.html |
|
RHSA-2018:0520 |
|
1040509 |
|
103383 |
|