Security

Adobe Addresses Critical Vulnerability CVE-2018-15982 in Flash Player as Report of an Exploit Makes Rounds

Adobe security bulletin just announced the release of a critical security update for its Flash Player. This recent update addresses a critical vulnerability CVE-2018-15982 in the Adobe Flash Player and another one in Adobe Flash Player installer. In case of successful exploitation, it could lead to Arbitrary Code Execution and privilege escalation in current user context respectively.

This new security update is particularly significant as reports have been making rounds regarding an exploit for this vulnerability existing in the wild. Adobe has also acknowledged the existence of this exploit. The security update caters for Adobe Flash Player for macOS, Windows, Linux and Chrome OS.

Affected Product Versions

Product Version Platform
Adobe Flash Player Desktop Runtime 31.0.0.153 and earlier versions Windows, macOS and Linux
Adobe Flash Player for Google Chrome 31.0.0.153 and earlier versions Windows, macOS, Linux and Chrome OS
Adobe Flash Player for Microsoft Edge and Internet Explorer 11 31.0.0.153 and earlier versions Windows 10 and 8.1
Adobe Flash Player Installer 31.0.0.108 and earlier Windows

Solution

Adobe has given the following priority ratings to these updates and has recommended that the users update their installation to the latest version:

Product Version Platform Priority Availability
Adobe Flash Player Desktop Runtime 32.0.0.101 Windows, macOS 1 Flash Player Download Center

Flash Player Distribution

Adobe Flash Player for Google Chrome 32.0.0.101 Windows, macOS, Linux, and Chrome OS 1 Google Chrome Releases
Adobe Flash Player for Microsoft Edge and Internet Explorer 11 32.0.0.101 Windows 10 and 8.1 1 Microsoft Security Advisory
Adobe Flash Player Desktop Runtime 32.0.0.101 Linux 3 Flash Player Download Center
Adobe Flash Player Installer 31.0.0.122 Windows 2 Flash Player Download Center

Flash Player Distribution

Adobe Flash Player that has been installed with Google Chrome, Internet Explorer 11 for Windows 8.1 and 10 and Microsoft Edge will be updated automatically to its latest version. However, users who do not have the ‘Allow Adobe to install updates’ option enabled can install the update via the update mechanism within the product when prompted.

Close