PT-2019-5714 · Microsoft+3 · Internet Explorer+6

Published

2019-06-09

Updated

2021-09-16

CVE-2020-9633

CVSS v3.1

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Adobe Flash Player Desktop Runtime versions 32.0.0.371 and earlier Adobe Flash Player for Google Chrome versions 32.0.0.371 and earlier Adobe Flash Player for Microsoft Edge and Internet Explorer versions 32.0.0.330 and earlier

Description The issue is related to a use-after-free vulnerability, which could lead to arbitrary code execution if successfully exploited. This vulnerability may allow a remote attacker to bypass security restrictions and execute arbitrary code.

Recommendations For Adobe Flash Player Desktop Runtime versions 32.0.0.371 and earlier, update to a version later than 32.0.0.371. For Adobe Flash Player for Google Chrome versions 32.0.0.371 and earlier, update to a version later than 32.0.0.371. For Adobe Flash Player for Microsoft Edge and Internet Explorer versions 32.0.0.330 and earlier, update to a version later than 32.0.0.330.

Fix

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

BDU:2021-00703

CVE-2020-9633

MGASA-2020-0264

RHSA-2020:2547

RHSA-2020_2547

Affected Products

Flash Player Desktop Runtime

Flash Player For Google Chrome

Adobe Flash Player For Microsoft Edge/Internet Explorer

Google Chrome

Internet Explorer

Edge

Red Hat

PT-2019-5714 · Microsoft+3 · Internet Explorer+6

CVE-2020-9633

Weakness Enumeration

Related Identifiers

Affected Products

References · 11