cvelistv5 - cve-2018-4877

cve-2018-4877

Vulnerability from cvelistv5

Published

2018-02-06 20:00

Modified

2024-08-05 05:18

Severity ?

Summary

A use-after-free vulnerability was discovered in Adobe Flash Player before 28.0.0.161. This vulnerability occurs due to a dangling pointer in the Primetime SDK related to media player's quality of service functionality. A successful attack can lead to arbitrary code execution.

References

URL	Tags
psirt@adobe.com	http://www.securityfocus.com/bid/102930	Third Party Advisory, VDB Entry
psirt@adobe.com	https://access.redhat.com/errata/RHSA-2018:0285	Third Party Advisory
psirt@adobe.com	https://helpx.adobe.com/security/products/flash-player/apsb18-03.html	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/102930	Third Party Advisory, VDB Entry
af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2018:0285	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://helpx.adobe.com/security/products/flash-player/apsb18-03.html	Vendor Advisory

Impacted products

	Vendor	Product	Version
	n/a	Adobe Flash Player before 28.0.0.161	Version: Adobe Flash Player before 28.0.0.161

Show details on NVD website

JSON

To clipboard

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T05:18:26.666Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_MISC",
                     "x_transferred",
                  ],
                  url: "https://helpx.adobe.com/security/products/flash-player/apsb18-03.html",
               },
               {
                  name: "RHSA-2018:0285",
                  tags: [
                     "vendor-advisory",
                     "x_refsource_REDHAT",
                     "x_transferred",
                  ],
                  url: "https://access.redhat.com/errata/RHSA-2018:0285",
               },
               {
                  name: "102930",
                  tags: [
                     "vdb-entry",
                     "x_refsource_BID",
                     "x_transferred",
                  ],
                  url: "http://www.securityfocus.com/bid/102930",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Adobe Flash Player before 28.0.0.161",
               vendor: "n/a",
               versions: [
                  {
                     status: "affected",
                     version: "Adobe Flash Player before 28.0.0.161",
                  },
               ],
            },
         ],
         datePublic: "2018-02-06T00:00:00",
         descriptions: [
            {
               lang: "en",
               value: "A use-after-free vulnerability was discovered in Adobe Flash Player before 28.0.0.161. This vulnerability occurs due to a dangling pointer in the Primetime SDK related to media player's quality of service functionality. A successful attack can lead to arbitrary code execution.",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "use-after-free",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2018-02-27T04:57:01",
            orgId: "078d4453-3bcd-4900-85e6-15281da43538",
            shortName: "adobe",
         },
         references: [
            {
               tags: [
                  "x_refsource_MISC",
               ],
               url: "https://helpx.adobe.com/security/products/flash-player/apsb18-03.html",
            },
            {
               name: "RHSA-2018:0285",
               tags: [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
               ],
               url: "https://access.redhat.com/errata/RHSA-2018:0285",
            },
            {
               name: "102930",
               tags: [
                  "vdb-entry",
                  "x_refsource_BID",
               ],
               url: "http://www.securityfocus.com/bid/102930",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "psirt@adobe.com",
               ID: "CVE-2018-4877",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Adobe Flash Player before 28.0.0.161",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "Adobe Flash Player before 28.0.0.161",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "n/a",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "A use-after-free vulnerability was discovered in Adobe Flash Player before 28.0.0.161. This vulnerability occurs due to a dangling pointer in the Primetime SDK related to media player's quality of service functionality. A successful attack can lead to arbitrary code execution.",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "use-after-free",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://helpx.adobe.com/security/products/flash-player/apsb18-03.html",
                     refsource: "MISC",
                     url: "https://helpx.adobe.com/security/products/flash-player/apsb18-03.html",
                  },
                  {
                     name: "RHSA-2018:0285",
                     refsource: "REDHAT",
                     url: "https://access.redhat.com/errata/RHSA-2018:0285",
                  },
                  {
                     name: "102930",
                     refsource: "BID",
                     url: "http://www.securityfocus.com/bid/102930",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "078d4453-3bcd-4900-85e6-15281da43538",
      assignerShortName: "adobe",
      cveId: "CVE-2018-4877",
      datePublished: "2018-02-06T20:00:00",
      dateReserved: "2018-01-03T00:00:00",
      dateUpdated: "2024-08-05T05:18:26.666Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
   "vulnerability-lookup:meta": {
      nvd: "{\"cve\":{\"id\":\"CVE-2018-4877\",\"sourceIdentifier\":\"psirt@adobe.com\",\"published\":\"2018-02-06T21:29:00.253\",\"lastModified\":\"2024-11-21T04:07:37.580\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A use-after-free vulnerability was discovered in Adobe Flash Player before 28.0.0.161. This vulnerability occurs due to a dangling pointer in the Primetime SDK related to media player's quality of service functionality. A successful attack can lead to arbitrary code execution.\"},{\"lang\":\"es\",\"value\":\"Se ha descubierto una vulnerabilidad de uso de memoria previamente liberada en Adobe Flash Player, en versiones anteriores a la 28.0.0.161. Esta vulnerabilidad ocurre debido a un puntero pendiente en el SDK Primetime relacionado con la funcionalidad de calidad del servicio del media player. Un ataque con éxito podría permitir la ejecución arbitraria de código.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":9.8,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:C/I:C/A:C\",\"baseScore\":10.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":10.0,\"acInsufInfo\":true,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-416\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"28.0.0.161\",\"matchCriteriaId\":\"BB5FEF26-84B9-4C1D-99AC-9E2E52A92390\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"387021A0-AF36-463C-A605-32EA7DAC172E\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A2572D17-1DE6-457B-99CC-64AFD54487EA\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EE249E1B-A1FD-4E08-AA71-A0E1F10FFE97\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9BBCD86A-E6C7-4444-9D74-F861084090F0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E5ED5807-55B7-47C5-97A6-03233F4FBC3A\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:adobe:flash_player:*:*:*:*:*:edge:*:*\",\"versionEndExcluding\":\"28.0.0.161\",\"matchCriteriaId\":\"EAAD5B21-204E-4215-8892-CF0A78015FF9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:adobe:flash_player:*:*:*:*:*:internet_explorer_11:*:*\",\"versionEndExcluding\":\"28.0.0.161\",\"matchCriteriaId\":\"C28AD3D1-3392-419D-8C5C-182EC92A5DCA\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FBC814B4-7DEC-4EFC-ABFF-08FFD9FD16AA\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_8.1:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A7F51B5F-AA19-4D31-89FA-6DFAC4BA8F0F\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:adobe:flash_player:*:*:*:*:*:chrome:*:*\",\"versionEndExcluding\":\"28.0.0.161\",\"matchCriteriaId\":\"B5D4890F-79A6-4187-9556-7127678E0E19\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"387021A0-AF36-463C-A605-32EA7DAC172E\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:google:chrome_os:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D32ACF6F-5FF7-4815-8EAD-4719F5FC9B79\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A2572D17-1DE6-457B-99CC-64AFD54487EA\"}]}]}],\"references\":[{\"url\":\"http://www.securityfocus.com/bid/102930\",\"source\":\"psirt@adobe.com\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:0285\",\"source\":\"psirt@adobe.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://helpx.adobe.com/security/products/flash-player/apsb18-03.html\",\"source\":\"psirt@adobe.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/102930\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:0285\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://helpx.adobe.com/security/products/flash-player/apsb18-03.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}",
   },
}

rhsa-2018_0285

Vulnerability from csaf_redhat

Published

2018-02-07 17:58

Modified

2024-11-15 02:06

Summary

Red Hat Security Advisory: flash-plugin security update

Notes

Topic

An update for flash-plugin is now available for Red Hat Enterprise Linux 6 Supplementary. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details

The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash Player web browser plug-in. This update upgrades Flash Player to version 28.0.0.161. Security Fix(es): * This update fixes multiple vulnerabilities in Adobe Flash Player. These vulnerabilities, detailed in the Adobe Security Bulletin listed in the References section, could allow an attacker to create a specially crafted SWF file that would cause flash-plugin to crash, execute arbitrary code, or disclose sensitive information when the victim loaded a page containing the malicious SWF content. (CVE-2018-4877, CVE-2018-4878)

This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

JSON

To clipboard

{
   document: {
      aggregate_severity: {
         namespace: "https://access.redhat.com/security/updates/classification/",
         text: "Critical",
      },
      category: "csaf_security_advisory",
      csaf_version: "2.0",
      distribution: {
         text: "Copyright © Red Hat, Inc. All rights reserved.",
         tlp: {
            label: "WHITE",
            url: "https://www.first.org/tlp/",
         },
      },
      lang: "en",
      notes: [
         {
            category: "summary",
            text: "An update for flash-plugin is now available for Red Hat Enterprise Linux 6 Supplementary.\n\nRed Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
            title: "Topic",
         },
         {
            category: "general",
            text: "The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash Player web browser plug-in.\n\nThis update upgrades Flash Player to version 28.0.0.161.\n\nSecurity Fix(es):\n\n* This update fixes multiple vulnerabilities in Adobe Flash Player. These vulnerabilities, detailed in the Adobe Security Bulletin listed in the References section, could allow an attacker to create a specially crafted SWF file that would cause flash-plugin to crash, execute arbitrary code, or disclose sensitive information when the victim loaded a page containing the malicious SWF content. (CVE-2018-4877, CVE-2018-4878)",
            title: "Details",
         },
         {
            category: "legal_disclaimer",
            text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
            title: "Terms of Use",
         },
      ],
      publisher: {
         category: "vendor",
         contact_details: "https://access.redhat.com/security/team/contact/",
         issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
         name: "Red Hat Product Security",
         namespace: "https://www.redhat.com",
      },
      references: [
         {
            category: "self",
            summary: "https://access.redhat.com/errata/RHSA-2018:0285",
            url: "https://access.redhat.com/errata/RHSA-2018:0285",
         },
         {
            category: "external",
            summary: "https://access.redhat.com/security/updates/classification/#critical",
            url: "https://access.redhat.com/security/updates/classification/#critical",
         },
         {
            category: "external",
            summary: "https://helpx.adobe.com/security/products/flash-player/apsb18-03.html",
            url: "https://helpx.adobe.com/security/products/flash-player/apsb18-03.html",
         },
         {
            category: "external",
            summary: "1541981",
            url: "https://bugzilla.redhat.com/show_bug.cgi?id=1541981",
         },
         {
            category: "self",
            summary: "Canonical URL",
            url: "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_0285.json",
         },
      ],
      title: "Red Hat Security Advisory: flash-plugin security update",
      tracking: {
         current_release_date: "2024-11-15T02:06:43+00:00",
         generator: {
            date: "2024-11-15T02:06:43+00:00",
            engine: {
               name: "Red Hat SDEngine",
               version: "4.2.1",
            },
         },
         id: "RHSA-2018:0285",
         initial_release_date: "2018-02-07T17:58:39+00:00",
         revision_history: [
            {
               date: "2018-02-07T17:58:39+00:00",
               number: "1",
               summary: "Initial version",
            },
            {
               date: "2018-02-07T17:58:39+00:00",
               number: "2",
               summary: "Last updated version",
            },
            {
               date: "2024-11-15T02:06:43+00:00",
               number: "3",
               summary: "Last generated version",
            },
         ],
         status: "final",
         version: "3",
      },
   },
   product_tree: {
      branches: [
         {
            branches: [
               {
                  branches: [
                     {
                        category: "product_name",
                        name: "Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
                        product: {
                           name: "Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
                           product_id: "6Client-Supplementary-6.9.z",
                           product_identification_helper: {
                              cpe: "cpe:/a:redhat:rhel_extras:6",
                           },
                        },
                     },
                     {
                        category: "product_name",
                        name: "Red Hat Enterprise Linux Server Supplementary (v. 6)",
                        product: {
                           name: "Red Hat Enterprise Linux Server Supplementary (v. 6)",
                           product_id: "6Server-Supplementary-6.9.z",
                           product_identification_helper: {
                              cpe: "cpe:/a:redhat:rhel_extras:6",
                           },
                        },
                     },
                     {
                        category: "product_name",
                        name: "Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
                        product: {
                           name: "Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
                           product_id: "6Workstation-Supplementary-6.9.z",
                           product_identification_helper: {
                              cpe: "cpe:/a:redhat:rhel_extras:6",
                           },
                        },
                     },
                  ],
                  category: "product_family",
                  name: "Red Hat Enterprise Linux Supplementary",
               },
               {
                  branches: [
                     {
                        category: "product_version",
                        name: "flash-plugin-0:28.0.0.161-1.el6_9.i686",
                        product: {
                           name: "flash-plugin-0:28.0.0.161-1.el6_9.i686",
                           product_id: "flash-plugin-0:28.0.0.161-1.el6_9.i686",
                           product_identification_helper: {
                              purl: "pkg:rpm/redhat/flash-plugin@28.0.0.161-1.el6_9?arch=i686",
                           },
                        },
                     },
                  ],
                  category: "architecture",
                  name: "i686",
               },
            ],
            category: "vendor",
            name: "Red Hat",
         },
      ],
      relationships: [
         {
            category: "default_component_of",
            full_product_name: {
               name: "flash-plugin-0:28.0.0.161-1.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
               product_id: "6Client-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
            },
            product_reference: "flash-plugin-0:28.0.0.161-1.el6_9.i686",
            relates_to_product_reference: "6Client-Supplementary-6.9.z",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "flash-plugin-0:28.0.0.161-1.el6_9.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
               product_id: "6Server-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
            },
            product_reference: "flash-plugin-0:28.0.0.161-1.el6_9.i686",
            relates_to_product_reference: "6Server-Supplementary-6.9.z",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "flash-plugin-0:28.0.0.161-1.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
               product_id: "6Workstation-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
            },
            product_reference: "flash-plugin-0:28.0.0.161-1.el6_9.i686",
            relates_to_product_reference: "6Workstation-Supplementary-6.9.z",
         },
      ],
   },
   vulnerabilities: [
      {
         cve: "CVE-2018-4877",
         cwe: {
            id: "CWE-416",
            name: "Use After Free",
         },
         discovery_date: "2018-02-01T00:00:00+00:00",
         ids: [
            {
               system_name: "Red Hat Bugzilla ID",
               text: "1541981",
            },
         ],
         notes: [
            {
               category: "description",
               text: "A use-after-free vulnerability was discovered in Adobe Flash Player before 28.0.0.161. This vulnerability occurs due to a dangling pointer in the Primetime SDK related to media player's quality of service functionality. A successful attack can lead to arbitrary code execution.",
               title: "Vulnerability description",
            },
            {
               category: "summary",
               text: "flash-plugin: use-after-free causing remote code execution (APSB18-03)",
               title: "Vulnerability summary",
            },
            {
               category: "general",
               text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
               title: "CVSS score applicability",
            },
         ],
         product_status: {
            fixed: [
               "6Client-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
               "6Server-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
               "6Workstation-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
            ],
         },
         references: [
            {
               category: "self",
               summary: "Canonical URL",
               url: "https://access.redhat.com/security/cve/CVE-2018-4877",
            },
            {
               category: "external",
               summary: "RHBZ#1541981",
               url: "https://bugzilla.redhat.com/show_bug.cgi?id=1541981",
            },
            {
               category: "external",
               summary: "https://www.cve.org/CVERecord?id=CVE-2018-4877",
               url: "https://www.cve.org/CVERecord?id=CVE-2018-4877",
            },
            {
               category: "external",
               summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-4877",
               url: "https://nvd.nist.gov/vuln/detail/CVE-2018-4877",
            },
            {
               category: "external",
               summary: "https://helpx.adobe.com/security/products/flash-player/apsb18-03.html",
               url: "https://helpx.adobe.com/security/products/flash-player/apsb18-03.html",
            },
         ],
         release_date: "2018-02-01T00:00:00+00:00",
         remediations: [
            {
               category: "vendor_fix",
               date: "2018-02-07T17:58:39+00:00",
               details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
               product_ids: [
                  "6Client-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
                  "6Server-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
                  "6Workstation-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
               ],
               restart_required: {
                  category: "none",
               },
               url: "https://access.redhat.com/errata/RHSA-2018:0285",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  attackComplexity: "LOW",
                  attackVector: "NETWORK",
                  availabilityImpact: "HIGH",
                  baseScore: 8.8,
                  baseSeverity: "HIGH",
                  confidentialityImpact: "HIGH",
                  integrityImpact: "HIGH",
                  privilegesRequired: "NONE",
                  scope: "UNCHANGED",
                  userInteraction: "REQUIRED",
                  vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                  version: "3.0",
               },
               products: [
                  "6Client-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
                  "6Server-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
                  "6Workstation-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               details: "Critical",
            },
         ],
         title: "flash-plugin: use-after-free causing remote code execution (APSB18-03)",
      },
      {
         cve: "CVE-2018-4878",
         cwe: {
            id: "CWE-416",
            name: "Use After Free",
         },
         discovery_date: "2018-02-01T00:00:00+00:00",
         ids: [
            {
               system_name: "Red Hat Bugzilla ID",
               text: "1541981",
            },
         ],
         notes: [
            {
               category: "description",
               text: "A use-after-free vulnerability was discovered in Adobe Flash Player before 28.0.0.161. This vulnerability occurs due to a dangling pointer in the Primetime SDK related to media player handling of listener objects. A successful attack can lead to arbitrary code execution. This was exploited in the wild in January and February 2018.",
               title: "Vulnerability description",
            },
            {
               category: "summary",
               text: "flash-plugin: use-after-free causing remote code execution (APSB18-03)",
               title: "Vulnerability summary",
            },
            {
               category: "general",
               text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
               title: "CVSS score applicability",
            },
         ],
         product_status: {
            fixed: [
               "6Client-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
               "6Server-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
               "6Workstation-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
            ],
         },
         references: [
            {
               category: "self",
               summary: "Canonical URL",
               url: "https://access.redhat.com/security/cve/CVE-2018-4878",
            },
            {
               category: "external",
               summary: "RHBZ#1541981",
               url: "https://bugzilla.redhat.com/show_bug.cgi?id=1541981",
            },
            {
               category: "external",
               summary: "https://www.cve.org/CVERecord?id=CVE-2018-4878",
               url: "https://www.cve.org/CVERecord?id=CVE-2018-4878",
            },
            {
               category: "external",
               summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-4878",
               url: "https://nvd.nist.gov/vuln/detail/CVE-2018-4878",
            },
            {
               category: "external",
               summary: "https://helpx.adobe.com/security/products/flash-player/apsb18-03.html",
               url: "https://helpx.adobe.com/security/products/flash-player/apsb18-03.html",
            },
            {
               category: "external",
               summary: "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
               url: "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
            },
         ],
         release_date: "2018-02-01T00:00:00+00:00",
         remediations: [
            {
               category: "vendor_fix",
               date: "2018-02-07T17:58:39+00:00",
               details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
               product_ids: [
                  "6Client-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
                  "6Server-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
                  "6Workstation-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
               ],
               restart_required: {
                  category: "none",
               },
               url: "https://access.redhat.com/errata/RHSA-2018:0285",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  attackComplexity: "LOW",
                  attackVector: "NETWORK",
                  availabilityImpact: "HIGH",
                  baseScore: 8.8,
                  baseSeverity: "HIGH",
                  confidentialityImpact: "HIGH",
                  integrityImpact: "HIGH",
                  privilegesRequired: "NONE",
                  scope: "UNCHANGED",
                  userInteraction: "REQUIRED",
                  vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                  version: "3.0",
               },
               products: [
                  "6Client-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
                  "6Server-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
                  "6Workstation-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
               ],
            },
         ],
         threats: [
            {
               category: "exploit_status",
               date: "2021-11-03T00:00:00+00:00",
               details: "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
            },
            {
               category: "impact",
               details: "Critical",
            },
         ],
         title: "flash-plugin: use-after-free causing remote code execution (APSB18-03)",
      },
   ],
}

rhsa-2018:0285

Vulnerability from csaf_redhat

Published

2018-02-07 17:58

Modified

2024-11-15 02:06

Summary

Red Hat Security Advisory: flash-plugin security update

Notes

Topic

Details

JSON

To clipboard

{
   document: {
      aggregate_severity: {
         namespace: "https://access.redhat.com/security/updates/classification/",
         text: "Critical",
      },
      category: "csaf_security_advisory",
      csaf_version: "2.0",
      distribution: {
         text: "Copyright © Red Hat, Inc. All rights reserved.",
         tlp: {
            label: "WHITE",
            url: "https://www.first.org/tlp/",
         },
      },
      lang: "en",
      notes: [
         {
            category: "summary",
            text: "An update for flash-plugin is now available for Red Hat Enterprise Linux 6 Supplementary.\n\nRed Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
            title: "Topic",
         },
         {
            category: "general",
            text: "The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash Player web browser plug-in.\n\nThis update upgrades Flash Player to version 28.0.0.161.\n\nSecurity Fix(es):\n\n* This update fixes multiple vulnerabilities in Adobe Flash Player. These vulnerabilities, detailed in the Adobe Security Bulletin listed in the References section, could allow an attacker to create a specially crafted SWF file that would cause flash-plugin to crash, execute arbitrary code, or disclose sensitive information when the victim loaded a page containing the malicious SWF content. (CVE-2018-4877, CVE-2018-4878)",
            title: "Details",
         },
         {
            category: "legal_disclaimer",
            text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
            title: "Terms of Use",
         },
      ],
      publisher: {
         category: "vendor",
         contact_details: "https://access.redhat.com/security/team/contact/",
         issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
         name: "Red Hat Product Security",
         namespace: "https://www.redhat.com",
      },
      references: [
         {
            category: "self",
            summary: "https://access.redhat.com/errata/RHSA-2018:0285",
            url: "https://access.redhat.com/errata/RHSA-2018:0285",
         },
         {
            category: "external",
            summary: "https://access.redhat.com/security/updates/classification/#critical",
            url: "https://access.redhat.com/security/updates/classification/#critical",
         },
         {
            category: "external",
            summary: "https://helpx.adobe.com/security/products/flash-player/apsb18-03.html",
            url: "https://helpx.adobe.com/security/products/flash-player/apsb18-03.html",
         },
         {
            category: "external",
            summary: "1541981",
            url: "https://bugzilla.redhat.com/show_bug.cgi?id=1541981",
         },
         {
            category: "self",
            summary: "Canonical URL",
            url: "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_0285.json",
         },
      ],
      title: "Red Hat Security Advisory: flash-plugin security update",
      tracking: {
         current_release_date: "2024-11-15T02:06:43+00:00",
         generator: {
            date: "2024-11-15T02:06:43+00:00",
            engine: {
               name: "Red Hat SDEngine",
               version: "4.2.1",
            },
         },
         id: "RHSA-2018:0285",
         initial_release_date: "2018-02-07T17:58:39+00:00",
         revision_history: [
            {
               date: "2018-02-07T17:58:39+00:00",
               number: "1",
               summary: "Initial version",
            },
            {
               date: "2018-02-07T17:58:39+00:00",
               number: "2",
               summary: "Last updated version",
            },
            {
               date: "2024-11-15T02:06:43+00:00",
               number: "3",
               summary: "Last generated version",
            },
         ],
         status: "final",
         version: "3",
      },
   },
   product_tree: {
      branches: [
         {
            branches: [
               {
                  branches: [
                     {
                        category: "product_name",
                        name: "Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
                        product: {
                           name: "Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
                           product_id: "6Client-Supplementary-6.9.z",
                           product_identification_helper: {
                              cpe: "cpe:/a:redhat:rhel_extras:6",
                           },
                        },
                     },
                     {
                        category: "product_name",
                        name: "Red Hat Enterprise Linux Server Supplementary (v. 6)",
                        product: {
                           name: "Red Hat Enterprise Linux Server Supplementary (v. 6)",
                           product_id: "6Server-Supplementary-6.9.z",
                           product_identification_helper: {
                              cpe: "cpe:/a:redhat:rhel_extras:6",
                           },
                        },
                     },
                     {
                        category: "product_name",
                        name: "Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
                        product: {
                           name: "Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
                           product_id: "6Workstation-Supplementary-6.9.z",
                           product_identification_helper: {
                              cpe: "cpe:/a:redhat:rhel_extras:6",
                           },
                        },
                     },
                  ],
                  category: "product_family",
                  name: "Red Hat Enterprise Linux Supplementary",
               },
               {
                  branches: [
                     {
                        category: "product_version",
                        name: "flash-plugin-0:28.0.0.161-1.el6_9.i686",
                        product: {
                           name: "flash-plugin-0:28.0.0.161-1.el6_9.i686",
                           product_id: "flash-plugin-0:28.0.0.161-1.el6_9.i686",
                           product_identification_helper: {
                              purl: "pkg:rpm/redhat/flash-plugin@28.0.0.161-1.el6_9?arch=i686",
                           },
                        },
                     },
                  ],
                  category: "architecture",
                  name: "i686",
               },
            ],
            category: "vendor",
            name: "Red Hat",
         },
      ],
      relationships: [
         {
            category: "default_component_of",
            full_product_name: {
               name: "flash-plugin-0:28.0.0.161-1.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
               product_id: "6Client-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
            },
            product_reference: "flash-plugin-0:28.0.0.161-1.el6_9.i686",
            relates_to_product_reference: "6Client-Supplementary-6.9.z",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "flash-plugin-0:28.0.0.161-1.el6_9.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
               product_id: "6Server-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
            },
            product_reference: "flash-plugin-0:28.0.0.161-1.el6_9.i686",
            relates_to_product_reference: "6Server-Supplementary-6.9.z",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "flash-plugin-0:28.0.0.161-1.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
               product_id: "6Workstation-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
            },
            product_reference: "flash-plugin-0:28.0.0.161-1.el6_9.i686",
            relates_to_product_reference: "6Workstation-Supplementary-6.9.z",
         },
      ],
   },
   vulnerabilities: [
      {
         cve: "CVE-2018-4877",
         cwe: {
            id: "CWE-416",
            name: "Use After Free",
         },
         discovery_date: "2018-02-01T00:00:00+00:00",
         ids: [
            {
               system_name: "Red Hat Bugzilla ID",
               text: "1541981",
            },
         ],
         notes: [
            {
               category: "description",
               text: "A use-after-free vulnerability was discovered in Adobe Flash Player before 28.0.0.161. This vulnerability occurs due to a dangling pointer in the Primetime SDK related to media player's quality of service functionality. A successful attack can lead to arbitrary code execution.",
               title: "Vulnerability description",
            },
            {
               category: "summary",
               text: "flash-plugin: use-after-free causing remote code execution (APSB18-03)",
               title: "Vulnerability summary",
            },
            {
               category: "general",
               text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
               title: "CVSS score applicability",
            },
         ],
         product_status: {
            fixed: [
               "6Client-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
               "6Server-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
               "6Workstation-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
            ],
         },
         references: [
            {
               category: "self",
               summary: "Canonical URL",
               url: "https://access.redhat.com/security/cve/CVE-2018-4877",
            },
            {
               category: "external",
               summary: "RHBZ#1541981",
               url: "https://bugzilla.redhat.com/show_bug.cgi?id=1541981",
            },
            {
               category: "external",
               summary: "https://www.cve.org/CVERecord?id=CVE-2018-4877",
               url: "https://www.cve.org/CVERecord?id=CVE-2018-4877",
            },
            {
               category: "external",
               summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-4877",
               url: "https://nvd.nist.gov/vuln/detail/CVE-2018-4877",
            },
            {
               category: "external",
               summary: "https://helpx.adobe.com/security/products/flash-player/apsb18-03.html",
               url: "https://helpx.adobe.com/security/products/flash-player/apsb18-03.html",
            },
         ],
         release_date: "2018-02-01T00:00:00+00:00",
         remediations: [
            {
               category: "vendor_fix",
               date: "2018-02-07T17:58:39+00:00",
               details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
               product_ids: [
                  "6Client-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
                  "6Server-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
                  "6Workstation-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
               ],
               restart_required: {
                  category: "none",
               },
               url: "https://access.redhat.com/errata/RHSA-2018:0285",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  attackComplexity: "LOW",
                  attackVector: "NETWORK",
                  availabilityImpact: "HIGH",
                  baseScore: 8.8,
                  baseSeverity: "HIGH",
                  confidentialityImpact: "HIGH",
                  integrityImpact: "HIGH",
                  privilegesRequired: "NONE",
                  scope: "UNCHANGED",
                  userInteraction: "REQUIRED",
                  vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                  version: "3.0",
               },
               products: [
                  "6Client-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
                  "6Server-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
                  "6Workstation-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               details: "Critical",
            },
         ],
         title: "flash-plugin: use-after-free causing remote code execution (APSB18-03)",
      },
      {
         cve: "CVE-2018-4878",
         cwe: {
            id: "CWE-416",
            name: "Use After Free",
         },
         discovery_date: "2018-02-01T00:00:00+00:00",
         ids: [
            {
               system_name: "Red Hat Bugzilla ID",
               text: "1541981",
            },
         ],
         notes: [
            {
               category: "description",
               text: "A use-after-free vulnerability was discovered in Adobe Flash Player before 28.0.0.161. This vulnerability occurs due to a dangling pointer in the Primetime SDK related to media player handling of listener objects. A successful attack can lead to arbitrary code execution. This was exploited in the wild in January and February 2018.",
               title: "Vulnerability description",
            },
            {
               category: "summary",
               text: "flash-plugin: use-after-free causing remote code execution (APSB18-03)",
               title: "Vulnerability summary",
            },
            {
               category: "general",
               text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
               title: "CVSS score applicability",
            },
         ],
         product_status: {
            fixed: [
               "6Client-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
               "6Server-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
               "6Workstation-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
            ],
         },
         references: [
            {
               category: "self",
               summary: "Canonical URL",
               url: "https://access.redhat.com/security/cve/CVE-2018-4878",
            },
            {
               category: "external",
               summary: "RHBZ#1541981",
               url: "https://bugzilla.redhat.com/show_bug.cgi?id=1541981",
            },
            {
               category: "external",
               summary: "https://www.cve.org/CVERecord?id=CVE-2018-4878",
               url: "https://www.cve.org/CVERecord?id=CVE-2018-4878",
            },
            {
               category: "external",
               summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-4878",
               url: "https://nvd.nist.gov/vuln/detail/CVE-2018-4878",
            },
            {
               category: "external",
               summary: "https://helpx.adobe.com/security/products/flash-player/apsb18-03.html",
               url: "https://helpx.adobe.com/security/products/flash-player/apsb18-03.html",
            },
            {
               category: "external",
               summary: "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
               url: "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
            },
         ],
         release_date: "2018-02-01T00:00:00+00:00",
         remediations: [
            {
               category: "vendor_fix",
               date: "2018-02-07T17:58:39+00:00",
               details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
               product_ids: [
                  "6Client-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
                  "6Server-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
                  "6Workstation-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
               ],
               restart_required: {
                  category: "none",
               },
               url: "https://access.redhat.com/errata/RHSA-2018:0285",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  attackComplexity: "LOW",
                  attackVector: "NETWORK",
                  availabilityImpact: "HIGH",
                  baseScore: 8.8,
                  baseSeverity: "HIGH",
                  confidentialityImpact: "HIGH",
                  integrityImpact: "HIGH",
                  privilegesRequired: "NONE",
                  scope: "UNCHANGED",
                  userInteraction: "REQUIRED",
                  vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                  version: "3.0",
               },
               products: [
                  "6Client-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
                  "6Server-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
                  "6Workstation-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
               ],
            },
         ],
         threats: [
            {
               category: "exploit_status",
               date: "2021-11-03T00:00:00+00:00",
               details: "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
            },
            {
               category: "impact",
               details: "Critical",
            },
         ],
         title: "flash-plugin: use-after-free causing remote code execution (APSB18-03)",
      },
   ],
}

RHSA-2018:0285

Vulnerability from csaf_redhat

Published

2018-02-07 17:58

Modified

2024-11-15 02:06

Summary

Red Hat Security Advisory: flash-plugin security update

Notes

Topic

Details

JSON

To clipboard

{
   document: {
      aggregate_severity: {
         namespace: "https://access.redhat.com/security/updates/classification/",
         text: "Critical",
      },
      category: "csaf_security_advisory",
      csaf_version: "2.0",
      distribution: {
         text: "Copyright © Red Hat, Inc. All rights reserved.",
         tlp: {
            label: "WHITE",
            url: "https://www.first.org/tlp/",
         },
      },
      lang: "en",
      notes: [
         {
            category: "summary",
            text: "An update for flash-plugin is now available for Red Hat Enterprise Linux 6 Supplementary.\n\nRed Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
            title: "Topic",
         },
         {
            category: "general",
            text: "The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash Player web browser plug-in.\n\nThis update upgrades Flash Player to version 28.0.0.161.\n\nSecurity Fix(es):\n\n* This update fixes multiple vulnerabilities in Adobe Flash Player. These vulnerabilities, detailed in the Adobe Security Bulletin listed in the References section, could allow an attacker to create a specially crafted SWF file that would cause flash-plugin to crash, execute arbitrary code, or disclose sensitive information when the victim loaded a page containing the malicious SWF content. (CVE-2018-4877, CVE-2018-4878)",
            title: "Details",
         },
         {
            category: "legal_disclaimer",
            text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
            title: "Terms of Use",
         },
      ],
      publisher: {
         category: "vendor",
         contact_details: "https://access.redhat.com/security/team/contact/",
         issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
         name: "Red Hat Product Security",
         namespace: "https://www.redhat.com",
      },
      references: [
         {
            category: "self",
            summary: "https://access.redhat.com/errata/RHSA-2018:0285",
            url: "https://access.redhat.com/errata/RHSA-2018:0285",
         },
         {
            category: "external",
            summary: "https://access.redhat.com/security/updates/classification/#critical",
            url: "https://access.redhat.com/security/updates/classification/#critical",
         },
         {
            category: "external",
            summary: "https://helpx.adobe.com/security/products/flash-player/apsb18-03.html",
            url: "https://helpx.adobe.com/security/products/flash-player/apsb18-03.html",
         },
         {
            category: "external",
            summary: "1541981",
            url: "https://bugzilla.redhat.com/show_bug.cgi?id=1541981",
         },
         {
            category: "self",
            summary: "Canonical URL",
            url: "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_0285.json",
         },
      ],
      title: "Red Hat Security Advisory: flash-plugin security update",
      tracking: {
         current_release_date: "2024-11-15T02:06:43+00:00",
         generator: {
            date: "2024-11-15T02:06:43+00:00",
            engine: {
               name: "Red Hat SDEngine",
               version: "4.2.1",
            },
         },
         id: "RHSA-2018:0285",
         initial_release_date: "2018-02-07T17:58:39+00:00",
         revision_history: [
            {
               date: "2018-02-07T17:58:39+00:00",
               number: "1",
               summary: "Initial version",
            },
            {
               date: "2018-02-07T17:58:39+00:00",
               number: "2",
               summary: "Last updated version",
            },
            {
               date: "2024-11-15T02:06:43+00:00",
               number: "3",
               summary: "Last generated version",
            },
         ],
         status: "final",
         version: "3",
      },
   },
   product_tree: {
      branches: [
         {
            branches: [
               {
                  branches: [
                     {
                        category: "product_name",
                        name: "Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
                        product: {
                           name: "Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
                           product_id: "6Client-Supplementary-6.9.z",
                           product_identification_helper: {
                              cpe: "cpe:/a:redhat:rhel_extras:6",
                           },
                        },
                     },
                     {
                        category: "product_name",
                        name: "Red Hat Enterprise Linux Server Supplementary (v. 6)",
                        product: {
                           name: "Red Hat Enterprise Linux Server Supplementary (v. 6)",
                           product_id: "6Server-Supplementary-6.9.z",
                           product_identification_helper: {
                              cpe: "cpe:/a:redhat:rhel_extras:6",
                           },
                        },
                     },
                     {
                        category: "product_name",
                        name: "Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
                        product: {
                           name: "Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
                           product_id: "6Workstation-Supplementary-6.9.z",
                           product_identification_helper: {
                              cpe: "cpe:/a:redhat:rhel_extras:6",
                           },
                        },
                     },
                  ],
                  category: "product_family",
                  name: "Red Hat Enterprise Linux Supplementary",
               },
               {
                  branches: [
                     {
                        category: "product_version",
                        name: "flash-plugin-0:28.0.0.161-1.el6_9.i686",
                        product: {
                           name: "flash-plugin-0:28.0.0.161-1.el6_9.i686",
                           product_id: "flash-plugin-0:28.0.0.161-1.el6_9.i686",
                           product_identification_helper: {
                              purl: "pkg:rpm/redhat/flash-plugin@28.0.0.161-1.el6_9?arch=i686",
                           },
                        },
                     },
                  ],
                  category: "architecture",
                  name: "i686",
               },
            ],
            category: "vendor",
            name: "Red Hat",
         },
      ],
      relationships: [
         {
            category: "default_component_of",
            full_product_name: {
               name: "flash-plugin-0:28.0.0.161-1.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
               product_id: "6Client-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
            },
            product_reference: "flash-plugin-0:28.0.0.161-1.el6_9.i686",
            relates_to_product_reference: "6Client-Supplementary-6.9.z",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "flash-plugin-0:28.0.0.161-1.el6_9.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
               product_id: "6Server-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
            },
            product_reference: "flash-plugin-0:28.0.0.161-1.el6_9.i686",
            relates_to_product_reference: "6Server-Supplementary-6.9.z",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "flash-plugin-0:28.0.0.161-1.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
               product_id: "6Workstation-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
            },
            product_reference: "flash-plugin-0:28.0.0.161-1.el6_9.i686",
            relates_to_product_reference: "6Workstation-Supplementary-6.9.z",
         },
      ],
   },
   vulnerabilities: [
      {
         cve: "CVE-2018-4877",
         cwe: {
            id: "CWE-416",
            name: "Use After Free",
         },
         discovery_date: "2018-02-01T00:00:00+00:00",
         ids: [
            {
               system_name: "Red Hat Bugzilla ID",
               text: "1541981",
            },
         ],
         notes: [
            {
               category: "description",
               text: "A use-after-free vulnerability was discovered in Adobe Flash Player before 28.0.0.161. This vulnerability occurs due to a dangling pointer in the Primetime SDK related to media player's quality of service functionality. A successful attack can lead to arbitrary code execution.",
               title: "Vulnerability description",
            },
            {
               category: "summary",
               text: "flash-plugin: use-after-free causing remote code execution (APSB18-03)",
               title: "Vulnerability summary",
            },
            {
               category: "general",
               text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
               title: "CVSS score applicability",
            },
         ],
         product_status: {
            fixed: [
               "6Client-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
               "6Server-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
               "6Workstation-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
            ],
         },
         references: [
            {
               category: "self",
               summary: "Canonical URL",
               url: "https://access.redhat.com/security/cve/CVE-2018-4877",
            },
            {
               category: "external",
               summary: "RHBZ#1541981",
               url: "https://bugzilla.redhat.com/show_bug.cgi?id=1541981",
            },
            {
               category: "external",
               summary: "https://www.cve.org/CVERecord?id=CVE-2018-4877",
               url: "https://www.cve.org/CVERecord?id=CVE-2018-4877",
            },
            {
               category: "external",
               summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-4877",
               url: "https://nvd.nist.gov/vuln/detail/CVE-2018-4877",
            },
            {
               category: "external",
               summary: "https://helpx.adobe.com/security/products/flash-player/apsb18-03.html",
               url: "https://helpx.adobe.com/security/products/flash-player/apsb18-03.html",
            },
         ],
         release_date: "2018-02-01T00:00:00+00:00",
         remediations: [
            {
               category: "vendor_fix",
               date: "2018-02-07T17:58:39+00:00",
               details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
               product_ids: [
                  "6Client-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
                  "6Server-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
                  "6Workstation-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
               ],
               restart_required: {
                  category: "none",
               },
               url: "https://access.redhat.com/errata/RHSA-2018:0285",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  attackComplexity: "LOW",
                  attackVector: "NETWORK",
                  availabilityImpact: "HIGH",
                  baseScore: 8.8,
                  baseSeverity: "HIGH",
                  confidentialityImpact: "HIGH",
                  integrityImpact: "HIGH",
                  privilegesRequired: "NONE",
                  scope: "UNCHANGED",
                  userInteraction: "REQUIRED",
                  vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                  version: "3.0",
               },
               products: [
                  "6Client-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
                  "6Server-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
                  "6Workstation-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               details: "Critical",
            },
         ],
         title: "flash-plugin: use-after-free causing remote code execution (APSB18-03)",
      },
      {
         cve: "CVE-2018-4878",
         cwe: {
            id: "CWE-416",
            name: "Use After Free",
         },
         discovery_date: "2018-02-01T00:00:00+00:00",
         ids: [
            {
               system_name: "Red Hat Bugzilla ID",
               text: "1541981",
            },
         ],
         notes: [
            {
               category: "description",
               text: "A use-after-free vulnerability was discovered in Adobe Flash Player before 28.0.0.161. This vulnerability occurs due to a dangling pointer in the Primetime SDK related to media player handling of listener objects. A successful attack can lead to arbitrary code execution. This was exploited in the wild in January and February 2018.",
               title: "Vulnerability description",
            },
            {
               category: "summary",
               text: "flash-plugin: use-after-free causing remote code execution (APSB18-03)",
               title: "Vulnerability summary",
            },
            {
               category: "general",
               text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
               title: "CVSS score applicability",
            },
         ],
         product_status: {
            fixed: [
               "6Client-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
               "6Server-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
               "6Workstation-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
            ],
         },
         references: [
            {
               category: "self",
               summary: "Canonical URL",
               url: "https://access.redhat.com/security/cve/CVE-2018-4878",
            },
            {
               category: "external",
               summary: "RHBZ#1541981",
               url: "https://bugzilla.redhat.com/show_bug.cgi?id=1541981",
            },
            {
               category: "external",
               summary: "https://www.cve.org/CVERecord?id=CVE-2018-4878",
               url: "https://www.cve.org/CVERecord?id=CVE-2018-4878",
            },
            {
               category: "external",
               summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-4878",
               url: "https://nvd.nist.gov/vuln/detail/CVE-2018-4878",
            },
            {
               category: "external",
               summary: "https://helpx.adobe.com/security/products/flash-player/apsb18-03.html",
               url: "https://helpx.adobe.com/security/products/flash-player/apsb18-03.html",
            },
            {
               category: "external",
               summary: "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
               url: "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
            },
         ],
         release_date: "2018-02-01T00:00:00+00:00",
         remediations: [
            {
               category: "vendor_fix",
               date: "2018-02-07T17:58:39+00:00",
               details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
               product_ids: [
                  "6Client-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
                  "6Server-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
                  "6Workstation-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
               ],
               restart_required: {
                  category: "none",
               },
               url: "https://access.redhat.com/errata/RHSA-2018:0285",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  attackComplexity: "LOW",
                  attackVector: "NETWORK",
                  availabilityImpact: "HIGH",
                  baseScore: 8.8,
                  baseSeverity: "HIGH",
                  confidentialityImpact: "HIGH",
                  integrityImpact: "HIGH",
                  privilegesRequired: "NONE",
                  scope: "UNCHANGED",
                  userInteraction: "REQUIRED",
                  vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                  version: "3.0",
               },
               products: [
                  "6Client-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
                  "6Server-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
                  "6Workstation-Supplementary-6.9.z:flash-plugin-0:28.0.0.161-1.el6_9.i686",
               ],
            },
         ],
         threats: [
            {
               category: "exploit_status",
               date: "2021-11-03T00:00:00+00:00",
               details: "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
            },
            {
               category: "impact",
               details: "Critical",
            },
         ],
         title: "flash-plugin: use-after-free causing remote code execution (APSB18-03)",
      },
   ],
}

gsd-2018-4877

Vulnerability from gsd

Modified

2023-12-13 01:22

Details

Aliases

CVE-2018-4877

Aliases

CVE-2018-4877

JSON

To clipboard

{
   GSD: {
      alias: "CVE-2018-4877",
      description: "A use-after-free vulnerability was discovered in Adobe Flash Player before 28.0.0.161. This vulnerability occurs due to a dangling pointer in the Primetime SDK related to media player's quality of service functionality. A successful attack can lead to arbitrary code execution.",
      id: "GSD-2018-4877",
      references: [
         "https://access.redhat.com/errata/RHSA-2018:0285",
         "https://advisories.mageia.org/CVE-2018-4877.html",
      ],
   },
   gsd: {
      metadata: {
         exploitCode: "unknown",
         remediation: "unknown",
         reportConfidence: "confirmed",
         type: "vulnerability",
      },
      osvSchema: {
         aliases: [
            "CVE-2018-4877",
         ],
         details: "A use-after-free vulnerability was discovered in Adobe Flash Player before 28.0.0.161. This vulnerability occurs due to a dangling pointer in the Primetime SDK related to media player's quality of service functionality. A successful attack can lead to arbitrary code execution.",
         id: "GSD-2018-4877",
         modified: "2023-12-13T01:22:28.696044Z",
         schema_version: "1.4.0",
      },
   },
   namespaces: {
      "cve.org": {
         CVE_data_meta: {
            ASSIGNER: "psirt@adobe.com",
            ID: "CVE-2018-4877",
            STATE: "PUBLIC",
         },
         affects: {
            vendor: {
               vendor_data: [
                  {
                     product: {
                        product_data: [
                           {
                              product_name: "Adobe Flash Player before 28.0.0.161",
                              version: {
                                 version_data: [
                                    {
                                       version_value: "Adobe Flash Player before 28.0.0.161",
                                    },
                                 ],
                              },
                           },
                        ],
                     },
                     vendor_name: "n/a",
                  },
               ],
            },
         },
         data_format: "MITRE",
         data_type: "CVE",
         data_version: "4.0",
         description: {
            description_data: [
               {
                  lang: "eng",
                  value: "A use-after-free vulnerability was discovered in Adobe Flash Player before 28.0.0.161. This vulnerability occurs due to a dangling pointer in the Primetime SDK related to media player's quality of service functionality. A successful attack can lead to arbitrary code execution.",
               },
            ],
         },
         problemtype: {
            problemtype_data: [
               {
                  description: [
                     {
                        lang: "eng",
                        value: "use-after-free",
                     },
                  ],
               },
            ],
         },
         references: {
            reference_data: [
               {
                  name: "https://helpx.adobe.com/security/products/flash-player/apsb18-03.html",
                  refsource: "MISC",
                  url: "https://helpx.adobe.com/security/products/flash-player/apsb18-03.html",
               },
               {
                  name: "RHSA-2018:0285",
                  refsource: "REDHAT",
                  url: "https://access.redhat.com/errata/RHSA-2018:0285",
               },
               {
                  name: "102930",
                  refsource: "BID",
                  url: "http://www.securityfocus.com/bid/102930",
               },
            ],
         },
      },
      "nvd.nist.gov": {
         configurations: {
            CVE_data_version: "4.0",
            nodes: [
               {
                  children: [
                     {
                        children: [],
                        cpe_match: [
                           {
                              cpe23Uri: "cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*",
                              cpe_name: [],
                              versionEndExcluding: "28.0.0.161",
                              vulnerable: true,
                           },
                        ],
                        operator: "OR",
                     },
                     {
                        children: [],
                        cpe_match: [
                           {
                              cpe23Uri: "cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*",
                              cpe_name: [],
                              vulnerable: false,
                           },
                           {
                              cpe23Uri: "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*",
                              cpe_name: [],
                              vulnerable: false,
                           },
                           {
                              cpe23Uri: "cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*",
                              cpe_name: [],
                              vulnerable: false,
                           },
                        ],
                        operator: "OR",
                     },
                  ],
                  cpe_match: [],
                  operator: "AND",
               },
               {
                  children: [],
                  cpe_match: [
                     {
                        cpe23Uri: "cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*",
                        cpe_name: [],
                        vulnerable: true,
                     },
                     {
                        cpe23Uri: "cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*",
                        cpe_name: [],
                        vulnerable: true,
                     },
                     {
                        cpe23Uri: "cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*",
                        cpe_name: [],
                        vulnerable: true,
                     },
                  ],
                  operator: "OR",
               },
               {
                  children: [
                     {
                        children: [],
                        cpe_match: [
                           {
                              cpe23Uri: "cpe:2.3:a:adobe:flash_player:*:*:*:*:*:internet_explorer_11:*:*",
                              cpe_name: [],
                              versionEndExcluding: "28.0.0.161",
                              vulnerable: true,
                           },
                           {
                              cpe23Uri: "cpe:2.3:a:adobe:flash_player:*:*:*:*:*:edge:*:*",
                              cpe_name: [],
                              versionEndExcluding: "28.0.0.161",
                              vulnerable: true,
                           },
                        ],
                        operator: "OR",
                     },
                     {
                        children: [],
                        cpe_match: [
                           {
                              cpe23Uri: "cpe:2.3:o:microsoft:windows_8.1:*:*:*:*:*:*:*:*",
                              cpe_name: [],
                              vulnerable: false,
                           },
                           {
                              cpe23Uri: "cpe:2.3:o:microsoft:windows_10:*:*:*:*:*:*:*:*",
                              cpe_name: [],
                              vulnerable: false,
                           },
                        ],
                        operator: "OR",
                     },
                  ],
                  cpe_match: [],
                  operator: "AND",
               },
               {
                  children: [
                     {
                        children: [],
                        cpe_match: [
                           {
                              cpe23Uri: "cpe:2.3:a:adobe:flash_player:*:*:*:*:*:chrome:*:*",
                              cpe_name: [],
                              versionEndExcluding: "28.0.0.161",
                              vulnerable: true,
                           },
                        ],
                        operator: "OR",
                     },
                     {
                        children: [],
                        cpe_match: [
                           {
                              cpe23Uri: "cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*",
                              cpe_name: [],
                              vulnerable: false,
                           },
                           {
                              cpe23Uri: "cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*",
                              cpe_name: [],
                              vulnerable: false,
                           },
                           {
                              cpe23Uri: "cpe:2.3:o:google:chrome_os:-:*:*:*:*:*:*:*",
                              cpe_name: [],
                              vulnerable: false,
                           },
                           {
                              cpe23Uri: "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*",
                              cpe_name: [],
                              vulnerable: false,
                           },
                        ],
                        operator: "OR",
                     },
                  ],
                  cpe_match: [],
                  operator: "AND",
               },
            ],
         },
         cve: {
            CVE_data_meta: {
               ASSIGNER: "psirt@adobe.com",
               ID: "CVE-2018-4877",
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "en",
                     value: "A use-after-free vulnerability was discovered in Adobe Flash Player before 28.0.0.161. This vulnerability occurs due to a dangling pointer in the Primetime SDK related to media player's quality of service functionality. A successful attack can lead to arbitrary code execution.",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "en",
                           value: "CWE-416",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://helpx.adobe.com/security/products/flash-player/apsb18-03.html",
                     refsource: "MISC",
                     tags: [
                        "Vendor Advisory",
                     ],
                     url: "https://helpx.adobe.com/security/products/flash-player/apsb18-03.html",
                  },
                  {
                     name: "102930",
                     refsource: "BID",
                     tags: [
                        "Third Party Advisory",
                        "VDB Entry",
                     ],
                     url: "http://www.securityfocus.com/bid/102930",
                  },
                  {
                     name: "RHSA-2018:0285",
                     refsource: "REDHAT",
                     tags: [
                        "Third Party Advisory",
                     ],
                     url: "https://access.redhat.com/errata/RHSA-2018:0285",
                  },
               ],
            },
         },
         impact: {
            baseMetricV2: {
               acInsufInfo: true,
               cvssV2: {
                  accessComplexity: "LOW",
                  accessVector: "NETWORK",
                  authentication: "NONE",
                  availabilityImpact: "COMPLETE",
                  baseScore: 10,
                  confidentialityImpact: "COMPLETE",
                  integrityImpact: "COMPLETE",
                  vectorString: "AV:N/AC:L/Au:N/C:C/I:C/A:C",
                  version: "2.0",
               },
               exploitabilityScore: 10,
               impactScore: 10,
               obtainAllPrivilege: false,
               obtainOtherPrivilege: false,
               obtainUserPrivilege: false,
               severity: "HIGH",
               userInteractionRequired: false,
            },
            baseMetricV3: {
               cvssV3: {
                  attackComplexity: "LOW",
                  attackVector: "NETWORK",
                  availabilityImpact: "HIGH",
                  baseScore: 9.8,
                  baseSeverity: "CRITICAL",
                  confidentialityImpact: "HIGH",
                  integrityImpact: "HIGH",
                  privilegesRequired: "NONE",
                  scope: "UNCHANGED",
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.0",
               },
               exploitabilityScore: 3.9,
               impactScore: 5.9,
            },
         },
         lastModifiedDate: "2021-09-08T17:21Z",
         publishedDate: "2018-02-06T21:29Z",
      },
   },
}

fkie_cve-2018-4877

Vulnerability from fkie_nvd

Published

2018-02-06 21:29

Modified

2024-11-21 04:07

Severity ?

9.8 (Critical) - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Summary

References

URL	Tags
psirt@adobe.com	http://www.securityfocus.com/bid/102930	Third Party Advisory, VDB Entry
psirt@adobe.com	https://access.redhat.com/errata/RHSA-2018:0285	Third Party Advisory
psirt@adobe.com	https://helpx.adobe.com/security/products/flash-player/apsb18-03.html	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/102930	Third Party Advisory, VDB Entry
af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2018:0285	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://helpx.adobe.com/security/products/flash-player/apsb18-03.html	Vendor Advisory

Impacted products

Vendor	Product	Version
adobe	flash_player	*
apple	macos	-
linux	linux_kernel	-
microsoft	windows	-
redhat	enterprise_linux_desktop	6.0
redhat	enterprise_linux_server	6.0
redhat	enterprise_linux_workstation	6.0
adobe	flash_player	*
adobe	flash_player	*
microsoft	windows_10	*
microsoft	windows_8.1	*
adobe	flash_player	*
apple	macos	-
google	chrome_os	-
linux	linux_kernel	-
microsoft	windows	-

JSON

To clipboard

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "BB5FEF26-84B9-4C1D-99AC-9E2E52A92390",
                     versionEndExcluding: "28.0.0.161",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "387021A0-AF36-463C-A605-32EA7DAC172E",
                     vulnerable: false,
                  },
                  {
                     criteria: "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "703AF700-7A70-47E2-BC3A-7FD03B3CA9C1",
                     vulnerable: false,
                  },
                  {
                     criteria: "cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2572D17-1DE6-457B-99CC-64AFD54487EA",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*",
                     matchCriteriaId: "EE249E1B-A1FD-4E08-AA71-A0E1F10FFE97",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*",
                     matchCriteriaId: "9BBCD86A-E6C7-4444-9D74-F861084090F0",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*",
                     matchCriteriaId: "E5ED5807-55B7-47C5-97A6-03233F4FBC3A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:a:adobe:flash_player:*:*:*:*:*:edge:*:*",
                     matchCriteriaId: "EAAD5B21-204E-4215-8892-CF0A78015FF9",
                     versionEndExcluding: "28.0.0.161",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:a:adobe:flash_player:*:*:*:*:*:internet_explorer_11:*:*",
                     matchCriteriaId: "C28AD3D1-3392-419D-8C5C-182EC92A5DCA",
                     versionEndExcluding: "28.0.0.161",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:microsoft:windows_10:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "FBC814B4-7DEC-4EFC-ABFF-08FFD9FD16AA",
                     vulnerable: false,
                  },
                  {
                     criteria: "cpe:2.3:o:microsoft:windows_8.1:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "A7F51B5F-AA19-4D31-89FA-6DFAC4BA8F0F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:a:adobe:flash_player:*:*:*:*:*:chrome:*:*",
                     matchCriteriaId: "B5D4890F-79A6-4187-9556-7127678E0E19",
                     versionEndExcluding: "28.0.0.161",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "387021A0-AF36-463C-A605-32EA7DAC172E",
                     vulnerable: false,
                  },
                  {
                     criteria: "cpe:2.3:o:google:chrome_os:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D32ACF6F-5FF7-4815-8EAD-4719F5FC9B79",
                     vulnerable: false,
                  },
                  {
                     criteria: "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "703AF700-7A70-47E2-BC3A-7FD03B3CA9C1",
                     vulnerable: false,
                  },
                  {
                     criteria: "cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2572D17-1DE6-457B-99CC-64AFD54487EA",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "A use-after-free vulnerability was discovered in Adobe Flash Player before 28.0.0.161. This vulnerability occurs due to a dangling pointer in the Primetime SDK related to media player's quality of service functionality. A successful attack can lead to arbitrary code execution.",
      },
      {
         lang: "es",
         value: "Se ha descubierto una vulnerabilidad de uso de memoria previamente liberada en Adobe Flash Player, en versiones anteriores a la 28.0.0.161. Esta vulnerabilidad ocurre debido a un puntero pendiente en el SDK Primetime relacionado con la funcionalidad de calidad del servicio del media player. Un ataque con éxito podría permitir la ejecución arbitraria de código.",
      },
   ],
   id: "CVE-2018-4877",
   lastModified: "2024-11-21T04:07:37.580",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: true,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "NETWORK",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 10,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:N/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 10,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV30: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "NETWORK",
               availabilityImpact: "HIGH",
               baseScore: 9.8,
               baseSeverity: "CRITICAL",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "NONE",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
               version: "3.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2018-02-06T21:29:00.253",
   references: [
      {
         source: "psirt@adobe.com",
         tags: [
            "Third Party Advisory",
            "VDB Entry",
         ],
         url: "http://www.securityfocus.com/bid/102930",
      },
      {
         source: "psirt@adobe.com",
         tags: [
            "Third Party Advisory",
         ],
         url: "https://access.redhat.com/errata/RHSA-2018:0285",
      },
      {
         source: "psirt@adobe.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://helpx.adobe.com/security/products/flash-player/apsb18-03.html",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Third Party Advisory",
            "VDB Entry",
         ],
         url: "http://www.securityfocus.com/bid/102930",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Third Party Advisory",
         ],
         url: "https://access.redhat.com/errata/RHSA-2018:0285",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://helpx.adobe.com/security/products/flash-player/apsb18-03.html",
      },
   ],
   sourceIdentifier: "psirt@adobe.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-416",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

ghsa-hcf8-mxwr-h337

Vulnerability from github

Published

2022-05-13 01:06

Modified

2022-05-13 01:06

Severity ?

9.8 (Critical) - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

Show details on source website

JSON

To clipboard

{
   affected: [],
   aliases: [
      "CVE-2018-4877",
   ],
   database_specific: {
      cwe_ids: [
         "CWE-416",
      ],
      github_reviewed: false,
      github_reviewed_at: null,
      nvd_published_at: "2018-02-06T21:29:00Z",
      severity: "CRITICAL",
   },
   details: "A use-after-free vulnerability was discovered in Adobe Flash Player before 28.0.0.161. This vulnerability occurs due to a dangling pointer in the Primetime SDK related to media player's quality of service functionality. A successful attack can lead to arbitrary code execution.",
   id: "GHSA-hcf8-mxwr-h337",
   modified: "2022-05-13T01:06:31Z",
   published: "2022-05-13T01:06:31Z",
   references: [
      {
         type: "ADVISORY",
         url: "https://nvd.nist.gov/vuln/detail/CVE-2018-4877",
      },
      {
         type: "WEB",
         url: "https://access.redhat.com/errata/RHSA-2018:0285",
      },
      {
         type: "WEB",
         url: "https://helpx.adobe.com/security/products/flash-player/apsb18-03.html",
      },
      {
         type: "WEB",
         url: "http://www.securityfocus.com/bid/102930",
      },
   ],
   schema_version: "1.4.0",
   severity: [
      {
         score: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
         type: "CVSS_V3",
      },
   ],
}

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

cve-2018-4877

Vulnerability from cvelistv5

rhsa-2018_0285

Vulnerability from csaf_redhat

rhsa-2018:0285

Vulnerability from csaf_redhat

RHSA-2018:0285

Vulnerability from csaf_redhat

gsd-2018-4877

Vulnerability from gsd

fkie_cve-2018-4877

Vulnerability from fkie_nvd

ghsa-hcf8-mxwr-h337

Vulnerability from github

Tags

Sightings

Nomenclature