QwikSec

Security Database

CVE

CWE

Training

CVE-2018-4877

Published: Feb 6, 2018

Modified: Aug 5, 2024

PUBLISHED

Description

A use-after-free vulnerability was discovered in Adobe Flash Player before 28.0.0.161. This vulnerability occurs due to a dangling pointer in the Primetime SDK related to media player's quality of service functionality. A successful attack can lead to arbitrary code execution.

Vendor	Product	Versions
n/a	Adobe Flash Player before 28.0.0.161	affected `Adobe Flash Player before 28.0.0.161`

References

https://helpx.adobe.com/security/products/flash-player/apsb18-03.html

x_refsource_MISC

vendor-advisory

x_refsource_REDHAT

vdb-entry

x_refsource_BID

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.