CVE-2017-11281

CVE Database · CVE-2017-11281

CVE-2017-11281

· N/AModified

CVSS v3.1

N/A

EPSS

33.88%

Published

Dec 1, 2017

Modified

May 12, 2026

Public PoC / Exploit (3)

All weaponized →

Exploit-DBAdobe Flash - Out-of-Bounds Memory Read in MP4 Parsing Exploit-DBAdobe Flash - Out-of-Bounds Write in MP4 Edge Processing TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Adobe Flash Player has an exploitable memory corruption vulnerability in the text handling function. Successful exploitation could lead to arbitrary code execution. This affects 26.0.0.151 and earlier.

Weaknesses (CWE)

CWE-119

Affected Products (16)

adobe · flash_playervulnerable

apple · macos

linux · linux_kernel

microsoft · windows

adobe · flash_playervulnerable

apple · macos

google · chrome_os

linux · linux_kernel

microsoft · windows

adobe · flash_playervulnerable

microsoft · windows_10

· windows_8.1

References (16)

http://www.securityfocus.com/bid/100710

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1039314

Third Party AdvisoryVDB Entry

https://access.redhat.com/errata/RHSA-2017:2702

Third Party Advisory

https://helpx.adobe.com/security/products/flash-player/apsb17-28.html

PatchVendor Advisory

https://security.gentoo.org/glsa/201709-16

Third Party AdvisoryVDB Entry

https://www.exploit-db.com/exploits/42781/

KEV Catalog EPSS Scores Vendors All CVEs