CVE-2020-9633
Last modified
CVE-2020-9633 is a critical-severity vulnerability rated 9.8/10 on the CVSS scale. Adobe Flash Player Desktop Runtime 32.0.0.371 and earlier, Adobe Flash Player for Google Chrome 32.0.0.371 and earlier, and Adobe Flash Player for Microsoft Edge and Internet Explorer 32.0.0.330 and earlier have an use after free vulnerability. Successful exploitation could lead to arbitrary code execution.. EPSS estimates a 7.56% chance of exploitation in the next 30 days.
Description
Adobe Flash Player Desktop Runtime 32.0.0.371 and earlier, Adobe Flash Player for Google Chrome 32.0.0.371 and earlier, and Adobe Flash Player for Microsoft Edge and Internet Explorer 32.0.0.330 and earlier have an use after free vulnerability. Successful exploitation could lead to arbitrary code execution.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Adobe | Flash Player Desktop Runtime | <= 32.0.0.371 |
| Adobe | Flash Player | <= 32.0.0.371 |
| Adobe | Flash Player | <= 32.0.0.330 |
References
- https://security.gentoo.org/glsa/202006-09Third Party Advisory
- https://security.gentoo.org/glsa/202006-09Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2020-9633?
How severe is CVE-2020-9633?
How do I fix CVE-2020-9633?
Are you affected by CVE-2020-9633?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST