PT-2018-16582 · Adobe+2 · Flash Player+2

Published

2018-01-09

Updated

2021-09-08

CVE-2018-4871

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Adobe Flash Player versions prior to 28.0.0.137

Description An Out-of-bounds Read issue occurs due to computation that reads data past the end of the target buffer. The use of an invalid pointer offset during access of internal data structure fields causes the issue. A successful attack can lead to sensitive data exposure.

Recommendations For versions prior to 28.0.0.137, update to version 28.0.0.137 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive data until the update is applied.

Fix

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-125

Related Identifiers

ALT-PU-2018-1250

ALT-PU-2018-2414

CVE-2018-4871

MGASA-2018-0072

RHSA-2018:0081

RHSA-2018_0081

ZDI-18-124

Affected Products

Alt Linux

Flash Player

Red Hat

PT-2018-16582 · Adobe+2 · Flash Player+2

CVE-2018-4871

Weakness Enumeration

Related Identifiers

Affected Products

References · 10