COOEY // HUBcompliance · community · intelligence

Exposures › CVE-2018-5002

CVE-2018-5002

Severity
high · on CISA KEV actively exploited
Source
CISA-KEV · kev
Published
2022-05-23
Reference
https://nvd.nist.gov/vuln/detail/CVE-2018-5002
⚡ RCE ⌖ exploited in the wild shame 65/100 rceexploited-in-wild

Adobe Flash Player have a stack-based buffer overflow vulnerability that could lead to remote code execution.

Players implicated

Adobe · vendorFlash Player · product

Description

Adobe Flash Player have a stack-based buffer overflow vulnerability that could lead to remote code execution.

Affected FedRAMP products 8 in the catalog

ProductProviderStatusMatch
Adobe Acrobat Sign for Government Adobe Authorized vendor-exact · 0.90
Adobe Analytics Adobe Authorized vendor-exact · 0.90
Adobe Campaign Adobe Authorized vendor-exact · 0.90
Adobe Connect Managed Services (ACMS-GC) Adobe Authorized vendor-exact · 0.90
Adobe Creative Cloud for Enterprise Adobe Authorized vendor-exact · 0.90
Adobe Document Cloud (PDF Services & Adobe Sign) Adobe Authorized vendor-exact · 0.90
Adobe Experience Manager Managed Services (AEMMS-GC) Adobe Authorized vendor-exact · 0.90
Adobe Learning Manager Adobe Authorized vendor-exact · 0.90