Flash Player < 126.96.36.199 Multiple Vulnerabilities (APSB18-25)
High Nessus Network Monitor Plugin ID 700436
SynopsisThe remote host is running an outdated version of Adobe Flash Player that is affected by multiple attack vectors.
DescriptionVersions of Adobe Flash Player prior to 188.8.131.52 are unpatched, and therefore affected by multiple vulnerabilities :
- An out-of-bounds read vulnerability exists that could lead to information disclosure. (CVE-2018-12824, CVE-2018-12826, CVE-2018-12827)
- A security bypass vulnerability exists that could lead to security mitigation bypass. (CVE-2018-12825)
- A "use of a component with a known vulnerability" vulnerability exists that could lead to privilege escalation. (CVE-2018-12828)
SolutionUpgrade to Adobe Flash Player version 184.108.40.206 or later.