Flash Player < 220.127.116.11 Multiple Vulnerabilities (APSB18-25)
High Nessus Network Monitor Plugin ID 700436
SynopsisThe remote host is running an outdated version of Adobe Flash Player that is affected by multiple attack vectors.
DescriptionVersions of Adobe Flash Player prior to 18.104.22.168 are unpatched, and therefore affected by multiple vulnerabilities :
- An out-of-bounds read vulnerability exists that could lead to information disclosure. (CVE-2018-12824, CVE-2018-12826, CVE-2018-12827)
- A security bypass vulnerability exists that could lead to security mitigation bypass. (CVE-2018-12825)
- A "use of a component with a known vulnerability" vulnerability exists that could lead to privilege escalation. (CVE-2018-12828)
SolutionUpgrade to Adobe Flash Player version 22.214.171.124 or later.