CVE-2018-4936 : Adobe Flash Player versions 29.0.0.113 and earlier have an exploitable Heap Over

Adobe Flash Player versions 29.0.0.113 and earlier have an exploitable Heap Overflow vulnerability. Successful exploitation could lead to information disclosure.

Published 2018-05-19 17:29:01

Updated 2022-11-18 17:18:52

Source Adobe Systems Incorporated

View at NVD, CVE.org

Vulnerability category: OverflowInformation leak

Products affected by CVE-2018-4936

Adobe » Flash Player » For Edge
Versions up to, including, (<=) 29.0.0.113
cpe:2.3:a:adobe:flash_player:*:*:*:*:*:edge:*:*
Matching versions
When used together with: Microsoft » Windows 10 » Version: N/A
When used together with: Microsoft » Windows 8.1 » Version: N/A
Adobe » Flash Player » For Internet Explorer
Versions up to, including, (<=) 29.0.0.113
cpe:2.3:a:adobe:flash_player:*:*:*:*:*:internet_explorer:*:*
Matching versions
When used together with: Microsoft » Windows 10 » Version: N/A
When used together with: Microsoft » Windows 8.1 » Version: N/A
Adobe » Flash Player » For Chrome
Versions up to, including, (<=) 29.0.0.113
cpe:2.3:a:adobe:flash_player:*:*:*:*:*:chrome:*:*
Matching versions
When used together with: Apple » Mac Os X » Version: N/A
When used together with: Google » Chrome Os » Version: N/A
When used together with: Linux » Linux Kernel » Version: N/A
When used together with: Microsoft » Windows » Version: N/A
Adobe » Flash Player Desktop Runtime
Versions up to, including, (<=) 29.0.0.113
cpe:2.3:a:adobe:flash_player_desktop_runtime:*:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X » Version: N/A
When used together with: Linux » Linux Kernel » Version: N/A
When used together with: Microsoft » Windows » Version: N/A

Exploit prediction scoring system (EPSS) score for CVE-2018-4936

EPSS FAQ

60.12%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 98 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2018-4936

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
4.3	MEDIUM	AV:N/AC:M/Au:N/C:P/I:N/A:N	8.6	2.9	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: Partial Integrity Impact: None Availability Impact: None
6.5	MEDIUM	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N	2.8	3.6	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: Required Scope: Unchanged Confidentiality: High Integrity: None Availability: None

CWE ids for CVE-2018-4936

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2018-4936

http://www.securitytracker.com/id/1040648

Adobe Flash Player Memory Errors Let Remote Users Obtain Potentially Sensitive Information and Execute Arbitrary Code - SecurityTracker
Broken Link;Third Party Advisory;VDB Entry

CVEs referencing this url
https://www.exploit-db.com/exploits/44526/

Adobe Flash - Overflow when Playing Sound
Exploit;Third Party Advisory;VDB Entry
https://helpx.adobe.com/security/products/flash-player/apsb18-08.html

Adobe Security Bulletin
Patch;Vendor Advisory

CVEs referencing this url
http://www.securityfocus.com/bid/103708

Adobe Flash Player APSB18-08 Multiple Security Vulnerabilities
Broken Link;Third Party Advisory;VDB Entry

CVEs referencing this url
https://security.gentoo.org/glsa/201804-11

Adobe Flash Player: Multiple vulnerabilities (GLSA 201804-11) — Gentoo security
Third Party Advisory

CVEs referencing this url
https://access.redhat.com/errata/RHSA-2018:1119

RHSA-2018:1119 - Security Advisory - Red Hat Customer Portal
Third Party Advisory

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2018-4936

Products affected by CVE-2018-4936

Exploit prediction scoring system (EPSS) score for CVE-2018-4936

CVSS scores for CVE-2018-4936

CWE ids for CVE-2018-4936

References for CVE-2018-4936