← Back

CVE-2020-3757

nvd nist
Published: Feb 13, 2020Modified: Nov 21, 2024

JSON object

Loading...
8.8
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Exploitability: 2.8 / Impact: 5.9
Source: NVD

Description

Adobe Flash Player versions 32.0.0.321 and earlier, 32.0.0.314 and earlier, 32.0.0.321 and earlier, and 32.0.0.255 and earlier have a type confusion vulnerability. Successful exploitation could lead to arbitrary code execution.

Affected (8)

Adobe
1 product
Flash Player
Redhat
3 products
Enterprise Linux Desktop
Enterprise Linux Server
Enterprise Linux Workstation
Configuration A
1 vulnerable
Vulnerable SoftwareAffected Versions
Flash Player
Before 32.0.0.321
Configuration B
1 vulnerable
Vulnerable SoftwareAffected Versions
Flash Player
Before 32.0.0.314
Configuration C
1 vulnerable · 4 platform
Vulnerable SoftwareAffected Versions
Flash Player
Up to 32.0.0.321
Running on/withPlatform Versions
Apple
Macos
All versions
Google
Chrome Os
All versions
Linux
Linux Kernel
All versions
Microsoft
Windows
All versions
Configuration D
2 vulnerable · 2 platform
Vulnerable SoftwareAffected Versions
Adobe
Flash Player
Up to 32.0.0.255
Flash Player
Up to 32.0.0.255
Running on/withPlatform Versions
Microsoft
Windows 10
All versions
Microsoft
Windows 8.1
All versions
Configuration E
3 vulnerable
Vulnerable SoftwareAffected Versions
Enterprise Linux Desktop
Version 6.0
Enterprise Linux Server
Version 6.0
Enterprise Linux Workstation
Version 6.0

Related CWEs

CWE-843
Access of Resource Using Incompatible Type ('Type Confusion')
The product allocates or initializes a resource such as a pointer, object, or variable using one type, but it later accesses that resource using a type that is incompatible with the original type.

References (6)

Source: psirt@adobe.com
PatchThird Party Advisory
Source: psirt@adobe.com
PatchVendor Advisory
Source: psirt@adobe.com
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory

Timeline

No history available yet.