Flash Player versions 126.96.36.199 and earlier have a type confusion vulnerability. Successful exploitation could lead to arbitrary code execution.
Adobe has released an out-of-band patch for a critical Flash Player vulnerability. Users are encouraged to upgrade as soon as possible. Background On November 20, Adobe released APSB18-44, an out-of-band (OOB) security bulletin to address a zero day vulnerability in Adobe Flash Player versions 188.8.131.52 and earlier for Windows, macOS, Linux and Chrome OS.