PT-2019-5714 · Microsoft+3 · Internet Explorer+6

Publicado

2019-06-09

·

Atualizado

2021-09-16

·

CVE-2020-9633

CVSS v3.1

10

Crítica

VetorAV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Adobe Flash Player Desktop Runtime versions 32.0.0.371 and earlier Adobe Flash Player for Google Chrome versions 32.0.0.371 and earlier Adobe Flash Player for Microsoft Edge and Internet Explorer versions 32.0.0.330 and earlier
Description The issue is related to a use-after-free vulnerability, which could lead to arbitrary code execution if successfully exploited. This vulnerability may allow a remote attacker to bypass security restrictions and execute arbitrary code.
Recommendations For Adobe Flash Player Desktop Runtime versions 32.0.0.371 and earlier, update to a version later than 32.0.0.371. For Adobe Flash Player for Google Chrome versions 32.0.0.371 and earlier, update to a version later than 32.0.0.371. For Adobe Flash Player for Microsoft Edge and Internet Explorer versions 32.0.0.330 and earlier, update to a version later than 32.0.0.330.

Correção

Use After Free

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-416

Identificadores relacionados

BDU:2021-00703
CVE-2020-9633
MGASA-2020-0264
RHSA-2020:2547
RHSA-2020_2547

Produtos afetados

Flash Player Desktop Runtime
Flash Player For Google Chrome
Adobe Flash Player For Microsoft Edge/Internet Explorer
Google Chrome
Internet Explorer
Edge
Red Hat