CVE-2008-4820

Adobe Flash Player < 9.0.124.0 - Exposure of Sensitive Information

Title source: llm
STIX 2.1

Description

Unspecified vulnerability in the Flash Player ActiveX control in Adobe Flash Player 9.0.124.0 and earlier on Windows allows attackers to obtain sensitive information via unknown vectors.

References (13)

Core 13
Core References
Patch vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/32129
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/33390
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2008/3444
US Government Resource third-party-advisory x_refsource_cert
http://www.us-cert.gov/cas/techalerts/TA08-350A.html
Patch, Vendor Advisory x_refsource_confirm
http://www.adobe.com/support/security/bulletins/apsb08-20.html
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/33179
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/46533
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id?1021148
Vendor Advisory x_refsource_confirm
http://support.apple.com/kb/HT3338
Vendor Advisory vendor-advisory x_refsource_sunalert
http://sunsolve.sun.com/search/document.do?assetkey=1-26-248586-1

Scores

EPSS 0.0510
EPSS Percentile 91.4%

Details

CWE
CWE-200
Status published
Products (18)
adobe/flash_player 7.0.69.0
adobe/flash_player 8.0.39.0
adobe/flash_player 9.0
adobe/flash_player 9.0.16 (2 CPE variants)
adobe/flash_player 9.0.18d60
adobe/flash_player 9.0.20
adobe/flash_player 9.0.20.0
adobe/flash_player 9.0.28
adobe/flash_player 9.0.28.0 (2 CPE variants)
adobe/flash_player 9.0.31
... and 8 more
Published Nov 10, 2008
Tracked Since Feb 18, 2026