|CERT-In Vulnerability Note
Multiple Vulnerabilities in Adobe Flash Player
Original Issue Date:July 14, 2017
Severity Rating: HIGH
- Adobe Flash Player Desktop Runtime versions 18.104.22.168 and earlier for Windows, Macintosh and Linux
- Adobe Flash Player for Google Chrome versions 22.214.171.124 and earlier for Windows, Macintosh, Linux and Chrome OS
- Adobe Flash Player for Microsoft Edge and Internet Explorer 11 versions 126.96.36.199 and earlier for Windows 10 and 8.1
Multiple vulnerabilities have been reported in Adobe Flash Player which could allow remote attacker to execute arbitrary code and obtain potentially sensitive information on the target system.
These vulnerabilities exist due to memory corruption and security bypass issues. A remote attacker could exploit these vulnerabilities by creating specially crafted Flash content and convincing the target user to open malicious file.
Successful exploitation of these vulnerabilities could allow the remote attacker to execute arbitrary code or bypass security restrictions to obtain sensitive information on the target system.
Apply appropriate patches as mentioned in the
Adobe Security Bulletin APSB17-21
The information provided herein is on "as is" basis, without warranty of any kind.
Email: email@example.com Phone: +91-11-24368572
Indian Computer Emergency Response Team (CERT-In)
Ministry of Electronics and Information Technology
Government of India
6, CGO Complex, Lodhi Road,
New Delhi - 110 003