CVE-2019-8070

Name of the Vulnerable Software and Affected Versions Adobe Flash Player versions 32.0.0.238 and earlier Adobe Flash Player versions 32.0.0.207 and earlier

Description The issue is related to a use-after-free vulnerability, which could allow an attacker to execute arbitrary code in the context of the current user. This vulnerability affects Adobe Flash Player Desktop Runtime, Flash Player for Google Chrome, Adobe Flash Player for Microsoft Edge, and Internet Explorer. Successful exploitation of this vulnerability may lead to arbitrary code execution.

Recommendations For Adobe Flash Player versions 32.0.0.238 and earlier, update to a version later than 32.0.0.238 to resolve the issue. For Adobe Flash Player versions 32.0.0.207 and earlier, update to a version later than 32.0.0.207 to resolve the issue. As a temporary workaround, consider disabling Adobe Flash Player until a patch is available. Restrict access to Adobe Flash Player to minimize the risk of exploitation.