CVE-2020-9633

Adobe Flash Player Desktop Runtime 32.0.0.371 and earlier, Adobe Flash Player for Google Chrome 32.0.0.371 and earlier, and Adobe Flash Player for Microsoft Edge and Internet Explorer 32.0.0.330 and earlier have an use after free vulnerability. Successful exploitation could lead to arbitrary code execution.

Published: Jun 12, 2020
Updated: Apr 14, 2023
CVE: CVE-2020-9633
Severity: Critical
Exploit:

CVSS v3:

Severity: Critical
Score: 9.8
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

Severity: High
Score: 10
AV:N/AC:L/Au:N/C:C/I:C/A:C

CWEs:

CWE-416

Affected Software
References

Software	From	Fixed in
adobe / flash_player_desktop_runtime	-	32.0.0.371.x
adobe / flash_player	-	32.0.0.371.x
adobe / flash_player	-	32.0.0.330.x

https://helpx.adobe.com/security/products/flash-player/apsb20-30.html
https://security.gentoo.org/glsa/202006-09

Vulnerability Database

289,599

CVE-2020-9633