Executive Summary

Informations
NameCVE-2018-15983First vendor Publication2019-01-18
VendorCveLast vendor Modification2019-01-28

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:P/I:P/A:P)
Cvss Base Score6.8Attack RangeNetwork
Cvss Impact Score6.4Attack ComplexityMedium
Cvss Expoit Score8.6AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

Flash Player versions 31.0.0.153 and earlier, and 31.0.0.108 and earlier have an insecure library loading (dll hijacking) vulnerability. Successful exploitation could lead to privilege escalation.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15983

CWE : Common Weakness Enumeration

%idName
100 %CWE-426Untrusted Search Path

CPE : Common Platform Enumeration

TypeDescriptionCount
Application498
Os1
Os1
Os1
Os1
Os1
Os1

Nessus® Vulnerability Scanner

DateDescription
2018-12-07Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_49cbe200f92a11e8a89dd43d7ef03aa6.nasl - Type : ACT_GATHER_INFO
2018-12-06Name : The remote Windows host has a browser plugin installed that is affected by mu...
File : flash_player_apsb18-42.nasl - Type : ACT_GATHER_INFO
2018-12-06Name : The remote macOS or Mac OSX host has a browser plugin installed that is affec...
File : macosx_flash_player_apsb18-42.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

SourceUrl
BID http://www.securityfocus.com/bid/106108
CONFIRM https://helpx.adobe.com/security/products/flash-player/apsb18-42.html

Alert History

If you want to see full details history, please login or register.
0
1
2
DateInformations
2019-01-28 17:19:01
  • Multiple Updates
2019-01-21 05:18:28
  • Multiple Updates
2019-01-18 21:19:22
  • First insertion