Vulnerability Description
Adobe Flash Player Desktop Runtime 32.0.0.371 and earlier, Adobe Flash Player for Google Chrome 32.0.0.371 and earlier, and Adobe Flash Player for Microsoft Edge and Internet Explorer 32.0.0.330 and earlier have an use after free vulnerability. Successful exploitation could lead to arbitrary code execution.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Adobe | Flash Player Desktop Runtime | <= 32.0.0.371 |
| Apple | Macos | - |
| Linux | Linux Kernel | - |
| Microsoft | Windows | - |
| Adobe | Flash Player | <= 32.0.0.371 |
| Chrome Os | - | |
| Microsoft | Windows 10 | All versions |
| Microsoft | Windows 8.1 | All versions |
Related Weaknesses (CWE)
References
- https://helpx.adobe.com/security/products/flash-player/apsb20-30.htmlVendor Advisory
- https://security.gentoo.org/glsa/202006-09Third Party Advisory
- https://helpx.adobe.com/security/products/flash-player/apsb20-30.htmlVendor Advisory
- https://security.gentoo.org/glsa/202006-09Third Party Advisory
FAQ
What is CVE-2020-9633?
CVE-2020-9633 is a vulnerability with a CVSS score of 9.8 (CRITICAL). Adobe Flash Player Desktop Runtime 32.0.0.371 and earlier, Adobe Flash Player for Google Chrome 32.0.0.371 and earlier, and Adobe Flash Player for Microsoft Edge and Internet Explorer 32.0.0.330 and e...
How severe is CVE-2020-9633?
CVE-2020-9633 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2020-9633?
Check the references section above for vendor advisories and patch information. Affected products include: Adobe Flash Player Desktop Runtime, Apple Macos, Linux Linux Kernel, Microsoft Windows, Adobe Flash Player.