CVE-2018-15982
CVE-2018-15982
In short
Flash Player has a flaw where it tries to use memory that has already been freed, potentially allowing an attacker to run malicious code on your computer.
Technical detail
Use-after-free vulnerability in Flash Player (versions ≤31.0.0.153 and ≤31.0.0.108) allows an attacker to execute arbitrary code by triggering access to previously deallocated memory, typically through crafted Flash content.
Summary generated and translated by AI from the official description.
Flash Player versions 31.0.0.153 and earlier, and 31.0.0.108 and earlier have a use after free vulnerability. Successful exploitation could lead to arbitrary code execution.
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected products
n/a · n/apublic PoCs found — 10
githubgithub.com/Ridter/CVE-2018-15982_EXP★ 179githubgithub.com/scanfsec/CVE-2018-15982★ 29githubgithub.com/Ormicron/CVE-2018-15982_PoC★ 13githubgithub.com/jas502n/CVE-2018-15982_EXP_IE★ 12githubgithub.com/kphongagsorn/adobe-flash-cve2018-15982★ 11githubgithub.com/SyFi/CVE-2018-15982★ 5githubgithub.com/FlatL1neAPT/CVE-2018-15982★ 0githubgithub.com/create12138/CVE-2018-15982★ 0exploitdbwww.exploit-db.com/exploits/46051unverifiedcve_referencewww.exploit-db.com/exploits/46051/unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://access.redhat.com/errata/RHSA-2018:3795https://github.com/cisagov/vulnrichment/issues/195https://helpx.adobe.com/security/products/flash-player/apsb18-42.htmlhttps://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2018-15982https://www.exploit-db.com/exploits/46051/http://www.securityfocus.com/bid/106116