Vulnerability Details CVE-2019-7837
Adobe Flash Player versions 32.0.0.171 and earlier, 32.0.0.171 and earlier, and 32.0.0.171 and earlier have a use after free vulnerability. Successful exploitation could lead to arbitrary code execution.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.014
EPSS Ranking 79.5%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 9.3
References
- http://www.securityfocus.com/bid/108312
- https://access.redhat.com/errata/RHSA-2019:1234
- https://helpx.adobe.com/security/products/flash-player/apsb19-26.html
- https://www.zerodayinitiative.com/advisories/ZDI-19-498/
- http://www.securityfocus.com/bid/108312
- https://access.redhat.com/errata/RHSA-2019:1234
- https://helpx.adobe.com/security/products/flash-player/apsb19-26.html
- https://www.zerodayinitiative.com/advisories/ZDI-19-498/
Products affected by CVE-2019-7837
-
cpe:2.3:a:adobe:flash_player:16.0.0.287
-
cpe:2.3:a:adobe:flash_player:18.0
-
cpe:2.3:a:adobe:flash_player:18.0.0.203
-
cpe:2.3:a:adobe:flash_player:18.0.0.204
-
cpe:2.3:a:adobe:flash_player:19.0.0.245
-
cpe:2.3:a:adobe:flash_player:20.0.0.228
-
cpe:2.3:a:adobe:flash_player:20.0.0.306
-
cpe:2.3:a:adobe:flash_player:21.0.0.216
-
cpe:2.3:a:adobe:flash_player:21.0.0.241
-
cpe:2.3:a:adobe:flash_player:21.0.0.242
-
cpe:2.3:a:adobe:flash_player:21.0.0.97
-
cpe:2.3:a:adobe:flash_player:22.0.0.192
-
cpe:2.3:a:adobe:flash_player:22.0.0.211
-
cpe:2.3:a:adobe:flash_player:23.0
-
cpe:2.3:a:adobe:flash_player:23.0.0.162
-
cpe:2.3:a:adobe:flash_player:23.0.0.185
-
cpe:2.3:a:adobe:flash_player:23.0.0.205
-
cpe:2.3:a:adobe:flash_player:23.0.0.207
-
cpe:2.3:a:adobe:flash_player:23.0.0.257
-
cpe:2.3:a:adobe:flash_player:24.0.0.186
-
cpe:2.3:a:adobe:flash_player:24.0.0.194
-
cpe:2.3:a:adobe:flash_player:24.0.0.221
-
cpe:2.3:a:adobe:flash_player:25.0.0.127
-
cpe:2.3:a:adobe:flash_player:25.0.0.148
-
cpe:2.3:a:adobe:flash_player:25.0.0.163
-
cpe:2.3:a:adobe:flash_player:25.0.0.171
-
cpe:2.3:a:adobe:flash_player:26.0.0.120
-
cpe:2.3:a:adobe:flash_player:26.0.0.126
-
cpe:2.3:a:adobe:flash_player:26.0.0.131
-
cpe:2.3:a:adobe:flash_player:26.0.0.137
-
cpe:2.3:a:adobe:flash_player:26.0.0.151
-
cpe:2.3:a:adobe:flash_player:27.0.0.130
-
cpe:2.3:a:adobe:flash_player:27.0.0.159
-
cpe:2.3:a:adobe:flash_player:27.0.0.170
-
cpe:2.3:a:adobe:flash_player:27.0.0.183
-
cpe:2.3:a:adobe:flash_player:27.0.0.187
-
cpe:2.3:a:adobe:flash_player:28.0.0.126
-
cpe:2.3:a:adobe:flash_player:28.0.0.137
-
cpe:2.3:a:adobe:flash_player:28.0.0.161
-
cpe:2.3:a:adobe:flash_player:29.0.0.113
-
cpe:2.3:a:adobe:flash_player:29.0.0.140
-
cpe:2.3:a:adobe:flash_player:29.0.0.171
-
cpe:2.3:a:adobe:flash_player:30.0.0.113
-
cpe:2.3:a:adobe:flash_player:30.0.0.134
-
cpe:2.3:a:adobe:flash_player:30.0.0.154
-
cpe:2.3:a:adobe:flash_player:31.0.0.108
-
cpe:2.3:a:adobe:flash_player:31.0.0.122
-
cpe:2.3:a:adobe:flash_player:31.0.0.148
-
cpe:2.3:a:adobe:flash_player:31.0.0.153
-
cpe:2.3:a:adobe:flash_player:32.0.0.101
-
cpe:2.3:a:adobe:flash_player:32.0.0.114
-
cpe:2.3:a:adobe:flash_player:32.0.0.142
-
cpe:2.3:a:adobe:flash_player:32.0.0.156
-
cpe:2.3:a:adobe:flash_player:32.0.0.171
-
cpe:2.3:a:adobe:flash_player_desktop_runtime:16.0.0.287
-
cpe:2.3:a:adobe:flash_player_desktop_runtime:18.0
-
cpe:2.3:a:adobe:flash_player_desktop_runtime:18.0.0.203
-
cpe:2.3:a:adobe:flash_player_desktop_runtime:21.0.0.226
-
cpe:2.3:a:adobe:flash_player_desktop_runtime:23.0.0.162
-
cpe:2.3:a:adobe:flash_player_desktop_runtime:26.0.0.131
-
cpe:2.3:a:adobe:flash_player_desktop_runtime:26.0.0.137
-
cpe:2.3:a:adobe:flash_player_desktop_runtime:26.0.0.151
-
cpe:2.3:a:adobe:flash_player_desktop_runtime:27.0.0.130
-
cpe:2.3:a:adobe:flash_player_desktop_runtime:27.0.0.159
-
cpe:2.3:a:adobe:flash_player_desktop_runtime:27.0.0.170
-
cpe:2.3:a:adobe:flash_player_desktop_runtime:27.0.0.183
-
cpe:2.3:a:adobe:flash_player_desktop_runtime:27.0.0.187
-
cpe:2.3:a:adobe:flash_player_desktop_runtime:28.0.0.126
-
cpe:2.3:a:adobe:flash_player_desktop_runtime:28.0.0.137
-
cpe:2.3:a:adobe:flash_player_desktop_runtime:28.0.0.161
-
cpe:2.3:a:adobe:flash_player_desktop_runtime:29.0.0.113
-
cpe:2.3:a:adobe:flash_player_desktop_runtime:29.0.0.140
-
cpe:2.3:a:adobe:flash_player_desktop_runtime:29.0.0.171
-
cpe:2.3:a:adobe:flash_player_desktop_runtime:30.0.0.113
-
cpe:2.3:a:adobe:flash_player_desktop_runtime:30.0.0.134
-
cpe:2.3:a:adobe:flash_player_desktop_runtime:30.0.0.154
-
cpe:2.3:a:adobe:flash_player_desktop_runtime:31.0.0.108
-
cpe:2.3:a:adobe:flash_player_desktop_runtime:31.0.0.122
-
cpe:2.3:a:adobe:flash_player_desktop_runtime:31.0.0.148
-
cpe:2.3:a:adobe:flash_player_desktop_runtime:31.0.0.153
-
cpe:2.3:a:adobe:flash_player_desktop_runtime:32.0.0.101
-
cpe:2.3:a:adobe:flash_player_desktop_runtime:32.0.0.114
-
cpe:2.3:a:adobe:flash_player_desktop_runtime:32.0.0.142
-
cpe:2.3:a:adobe:flash_player_desktop_runtime:32.0.0.156
-
cpe:2.3:a:adobe:flash_player_desktop_runtime:32.0.0.171
-
cpe:2.3:o:apple:mac_os_x:-
-
cpe:2.3:o:google:chrome_os:-
-
cpe:2.3:o:linux:linux_kernel:-
-
cpe:2.3:o:microsoft:windows:-
-
cpe:2.3:o:microsoft:windows_10:-
-
cpe:2.3:o:microsoft:windows_8.1:-
-
cpe:2.3:o:redhat:enterprise_linux_desktop:6.0
-
cpe:2.3:o:redhat:enterprise_linux_server:6.0
-
cpe:2.3:o:redhat:enterprise_linux_workstation:6.0