Use-After-Free Vulnerability in Adobe Flash Player Allows Arbitrary Code Execution

CVE-2018-4877 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

A use-after-free vulnerability was discovered in Adobe Flash Player before 28.0.0.161. This vulnerability occurs due to a dangling pointer in the Primetime SDK related to media player's quality of service functionality. A successful attack can lead to arbitrary code execution.

Learn more about our Code Quality Review.