PT-2019-6209 · Microsoft+3 · Internet Explorer 11+6

Published

2019-02-12

·

Updated

2021-09-08

·

CVE-2019-7090

CVSS v3.1

6.5

Medium

VectorAV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Name of the Vulnerable Software and Affected Versions Adobe Flash Player Desktop Runtime versions 32.0.0.114 and earlier Adobe Flash Player for Google Chrome versions 32.0.0.114 and earlier Adobe Flash Player for Microsoft Edge and Internet Explorer 11 versions 32.0.0.114 and earlier
Description The issue is related to an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure, allowing a remote attacker to obtain sensitive information.
Recommendations For Adobe Flash Player Desktop Runtime versions 32.0.0.114 and earlier, update to a version later than 32.0.0.114. For Adobe Flash Player for Google Chrome versions 32.0.0.114 and earlier, update to a version later than 32.0.0.114. For Adobe Flash Player for Microsoft Edge and Internet Explorer 11 versions 32.0.0.114 and earlier, update to a version later than 32.0.0.114.

Fix

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-125

Related Identifiers

BDU:2022-02716
CVE-2019-7090
MGASA-2019-0090
RHSA-2019:0348
RHSA-2019_0348
ZDI-19-219

Affected Products

Flash Player Desktop Runtime
Flash Player For Google Chrome
Adobe Flash Player For Microsoft Edge/Internet Explorer 11
Google Chrome
Internet Explorer 11
Edge
Red Hat