Security Alert (A18-09-03): Vulnerability in Adobe Flash Player
12 September 2018
Adobe released a security update to address a vulnerability found in the Adobe Flash Player. To exploit the vulnerability, a remote attacker would entice a targeted user to open a specially crafted Flash file, web page, or document with embedded malicious Flash content.
Please note that Adobe announced that the support for Adobe Flash will be ceased at the end of 2020 and no security updates will be provided after that. The support for Adobe Acrobat XI 11.x and Adobe Reader XI 11.x ended on 15.10.2017. Users should arrange migrating to other supported technology.
Adobe Flash Player Desktop Runtime for Windows, Macintosh and Linux 22.214.171.124 and earlier versions
Adobe Flash Player for Google Chrome 126.96.36.199 and earlier versions
Adobe Flash Player for Microsoft Edge and Internet Explorer 11 188.8.131.52 and earlier versions
A successful exploitation could lead to information disclosure on an affected system.
Upgrade Adobe Flash Player to the following versions to address the issue. The upgrade can be obtained by using the auto-update mechanism or by downloading at the following URLs:
Adobe Flash Player Desktop Runtime 184.108.40.206 for Windows and Macintosh https://get.adobe.com/flashplayer/ http://www.adobe.com/products/players/flash-player-distribution.html
Adobe Flash Player 220.127.116.11 for Google Chrome https://chromereleases.googleblog.com/
Adobe Flash Player 18.104.22.168 for Microsoft Edge and Internet Explorer 11 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180023
Adobe Flash Player 22.214.171.124 for Linux https://get.adobe.com/flashplayer/
If you have multiple browsers, you are required to perform the Adobe Flash Player upgrade for each browser, the Flash Player version can be checked at