CISA Catalog
Data sourced from the official CISA Known Exploited Vulnerabilities Catalog. Federal agencies are required to remediate these vulnerabilities by the due date per BOD 22-01.
KEV Entries
1,619
Ransomware Use
327
Overdue
1,615
Vendors
266
Products
655
79 results · Page 2/4
Adobe Flash Player Unspecified Vulnerability
Adobe · Flash Player
Adobe Flash Player contains an unspecified vulnerability that allows remote attackers to execute code or cause denial-of-service (DoS).
Required Action
The impacted product is end-of-life and should be disconnected if still in use.
Adobe Acrobat and Reader Stack-Based Buffer Overflow Vulnerability
Adobe · Acrobat and Reader
Adobe Acrobat and Reader contain a stack-based buffer overflow vulnerability that allows remote attackers to execute code or cause denial-of-service (DoS).
Required Action
Apply updates per vendor instructions.
Adobe Flash Player Memory Corruption Vulnerability
Adobe · Flash Player
Adobe Flash Player contains a memory corruption vulnerability that allows remote attackers to execute code or cause denial-of-service (DoS).
Required Action
The impacted product is end-of-life and should be disconnected if still in use.
Adobe Acrobat and Reader Use-After-Free Vulnerability
Adobe · Acrobat and Reader
Use-after-free vulnerability in Adobe Acrobat and Reader allows remote attackers to execute code via a crafted PDF file.
Required Action
Apply updates per vendor instructions.
Adobe Acrobat and Reader Universal 3D Remote Code Execution Vulnerability
Adobe · Acrobat and Reader
Adobe Acrobat and Reader contains an array boundary issue in Universal 3D (U3D) support that could lead to remote code execution.
Required Action
Apply updates per vendor instructions.
Adobe Acrobat and Reader, Flash Player Unspecified Vulnerability
Adobe · Acrobat and Reader, Flash Player
Adobe Acrobat and Reader and Adobe Flash Player allows remote attackers to execute code or cause denial-of-service (DoS).
Required Action
For Adobe Acrobat and Reader, apply updates per vendor instructions. For Adobe Flash Player, the impacted product is end-of-life and should be disconnected if still in use.
Adobe Acrobat and Reader Unspecified Vulnerability
Adobe · Acrobat and Reader
Adobe Acrobat and Reader contains an unespecified vulnerability described as a design flaw which could allow a specially crafted file to be printed silently an arbitrary number of times.
Required Action
Apply updates per vendor instructions.
Adobe Acrobat and Reader Buffer Overflow Vulnerability
Adobe · Acrobat and Reader
Adobe Acrobat and Reader contain a buffer overflow vulnerability that allows remote attackers to execute code via a PDF file with long arguments to unspecified JavaScript methods.
Required Action
Apply updates per vendor instructions.
Adobe Flash Player and AIR Integer Overflow Vulnerability
Adobe · Flash Player and AIR
Integer overflow vulnerability in Adobe Flash Player and AIR allows attackers to execute code.
Required Action
The impacted products are end-of-life and should be disconnected if still in use.
Adobe Flash Player and AIR Use-After-Free Vulnerability
Adobe · Flash Player and AIR
Use-after-free vulnerability in Adobe Flash Player and Adobe AIR allows attackers to execute code.
Required Action
The impacted products are end-of-life and should be disconnected if still in use.
Adobe Flash Player ASLR Bypass Vulnerability
Adobe · Flash Player
Adobe Flash Player does not properly restrict discovery of memory addresses, which allows attackers to bypass the address space layout randomization (ASLR) protection mechanism.
Required Action
The impacted product is end-of-life and should be disconnected if still in use.
Adobe Flash Player Integer Overflow Vulnerability
Adobe · Flash Player
Integer overflow in Adobe Flash Player allows attackers to execute code.
Required Action
The impacted product is end-of-life and should be disconnected if still in use.
Adobe Flash Player Dereferenced Pointer Vulnerability
Adobe · Flash Player
Adobe Flash Player has a vulnerability in the way it handles a dereferenced memory pointer which could lead to code execution.
Required Action
The impacted product is end-of-life and should be disconnected if still in use.
Adobe Reader and Acrobat Sandbox Bypass Vulnerability
Adobe · Reader and Acrobat
Adobe Reader and Acrobat on Windows allow attackers to bypass a sandbox protection mechanism, and consequently execute native code in a privileged context.
Required Action
Apply updates per vendor instructions.
Adobe Flash Player Stack-based Buffer Overflow Vulnerability
Adobe · Flash Player
Adobe Flash Player have a stack-based buffer overflow vulnerability that could lead to remote code execution.
Required Action
The impacted product is end-of-life and should be disconnected if still in use.
Adobe Flash Player Use-After-Free Vulnerability
Adobe · Flash Player
Use-after-free vulnerability in the BitmapData class in the ActionScript 3 (AS3) implementation in Adobe Flash Player allows remote attackers to execute code or cause a denial-of-service (DoS).
Required Action
The impacted product is end-of-life and should be disconnected if still in use.
Adobe Flash Player Use-After-Free Vulnerability
Adobe · Flash Player
Use-after-free vulnerability in the DisplayObject class in the ActionScript 3 (AS3) implementation in Adobe Flash Player allows remote attackers to execute code or cause a denial-of-service (DoS).
Required Action
The impacted product is end-of-life and should be disconnected if still in use.
Adobe Flash Player Heap-Based Buffer Overflow Vulnerability
Adobe · Flash Player
Heap-based buffer overflow vulnerability in Adobe Flash Player allows remote attackers to execute code.
Required Action
The impacted product is end-of-life and should be disconnected if still in use.
Adobe Flash Player Use-After-Free Vulnerability
Adobe · Flash Player
Use-after-free vulnerability in Adobe Flash Player allows remote attackers to execute code.
Required Action
The impacted product is end-of-life and should be disconnected if still in use.
Adobe Flash Player Remote Code Execution Vulnerability
Adobe · Flash Player
Unspecified vulnerability in Adobe Flash Player allows remote attackers to execute code.
Required Action
The impacted product is end-of-life and should be disconnected if still in use.
Adobe Flash Player Stack-Based Buffer Overflow Vulnerability
Adobe · Flash Player
Stack-based buffer overflow in Adobe Flash Player allows attackers to execute code remotely.
Required Action
The impacted product is end-of-life and should be disconnected if still in use.
Adobe Reader and Acrobat Arbitrary Integer Overflow Vulnerability
Adobe · Reader and Acrobat
Integer overflow vulnerability in Adobe Reader and Acrobat allows attackers to execute remote code.
Required Action
Apply updates per vendor instructions.
Adobe Flash Player Memory Corruption Vulnerability
Adobe · Flash Player
Adobe Flash Player contains a memory corruption vulnerability that allows for remote code execution or denial-of-service (DoS).
Required Action
The impacted product is end-of-life and should be disconnected if still in use.
Adobe Flash Player Use-After-Free Vulnerability
Adobe · Flash Player
Adobe Flash Player has an exploitable use-after-free vulnerability in the TextField class.
Required Action
The impacted product is end-of-life and should be disconnected if still in use.
Adobe Flash Player Remote Code Execution Vulnerability
Adobe · Flash Player
Unspecified vulnerability in Adobe Flash Player allows for remote code execution.
Required Action
The impacted product is end-of-life and should be disconnected if still in use.
