Hello everyone,
Adobe has released security updates for Adobe Flash Player for Windows, macOS, and Linux. These updates address a critical vulnerability in Adobe Flash Player. Successful exploitation could lead to an exploitable crash, potentially resulting in arbitrary code execution in the context of the current user.
Vulnerability details:
Vulnerability category: Null pointer Dereference
Vulnerability impact: Arbitrary Code Execution
CVE ID: CVE-2020-9746
Severity: Critical
Affected product versions:
Product | Version | Platform |
Adobe Flash Player Desktop Runtime | 32.0.0.433 and earlier | Windows, macOS and Linux |
Adobe Flash Player for Google Chrome | 32.0.0.433 and earlier | Windows, macOS, Linux and Chrome OS |
To update Adobe Flash Player using Patch Manager Plus, initiate a sync between the Central Patch Repository and Patch Manager Plus server. Search for the following Patch IDs or Bulletin ID and deploy them in your target systems
Patch ID | Bulletin ID | Patch Description |
316456 | TU-008 | Adobe Flash Player ActiveX (32.0.0.445) |
316457 | TU-008 | Adobe Flash Player NPAPI (32.0.0.445) |
316458 | TU-008 | Adobe Flash Player PPAPI (32.0.0.445) |
Cheers,
The ManageEngine Team