Today Adobe has released security updates for Adobe Flash that resolve 17 vulnerabilities. Out of the 17 reported vulnerabilities, 16 of them are critical as they could lead to code execution. A code execution vulnerability allows an attacker to create a specially crafted web page that exploits bugs in Adobe Flash that allows them to remotely execute code on the victim's computer.  This would allow the attacker to download files, execute commands, and have full control of the victim's computer.  

The CVE identifiers fixed by this update are CVEs CVE-2015-7651, CVE-2015-7652, CVE-2015-7653, CVE-2015-7654, CVE-2015-7655, CVE-2015-7656, CVE-2015-7657, CVE-2015-7658, CVE-2015-7659, CVE-2015-7660, CVE-2015-7661, CVE-2015-7662, CVE-2015-7663, CVE-2015-8042, CVE-2015-8043, CVE-2015-8044, and CVE-2015-8046. 

Wiz

It is strongly suggested that anyone who uses Adobe Flash upgrade to the latest versions listed in the below table.

 

Product Updated Versions Platform
Adobe Flash Player Desktop Runtime 19.0.0.245 Windows and Macintosh
Adobe Flash Player Extended Support Release 18.0.0.261 Windows and Macintosh
Adobe Flash Player for Google Chrome 19.0.0.245 Windows, Macintosh and Linux   
Adobe Flash Player for Microsoft Edge and Internet Explorer 11 19.0.0.245 Windows 10
Adobe Flash Player for Internet Explorer 10 and 11 19.0.0.245 Windows 8.0 and 8.1
Adobe Flash Player for Linux 11.2.202.548 Linux
AIR Desktop Runtime 19.0.0.241 Windows and Macintosh
AIR SDK 19.0.0.241 Windows, Macintosh, Android and iOS
AIR SDK & Compiler 19.0.0.241 Windows, Macintosh, Android and iOS
AIR for Android 19.0.0.241 Android
tines

Break down IAM silos like Bitpanda, KnowBe4, and PathAI

Broken IAM isn't just an IT problem - the impact ripples across your whole business.

This practical guide covers why traditional IAM practices fail to keep up with modern demands, examples of what "good" IAM looks like, and a simple checklist for building a scalable strategy.