The Adobe Product Security Incident Response Team updated security bulletins for Adobe Flash Player in a blog post today, with 5 vulnerabilities patched in Flash Player. Adobe assigned a Critical severity rating to the vulnerabilities. The vulnerabilities impact Windows, Mac, Linux and ChromeOS operating systems running Flash Player 22.214.171.124 (Windows, Mac) and earlier. Refer to the Affected Product Versions chart for specific product and version information for each platform. The Critical rating means that an exploited vulnerability “would allow malicious native-code to execute, potentially without a user being aware.”
Adobe assigned the Flash Player vulnerabilities a Priority 2 rating, except for Linux (Priority 3). Priority 2 updates resolve vulnerabilities in a product that has historically been at elevated risk, but has no known exploits. Adobe recommends applying the update that resolves the vulnerabilities as soon as possible by updating to Flash Player 126.96.36.199. Refer to the Solution chart for the specific updated version for each platform.
Certain web browsers, such as Google Chrome and Microsoft Edge, already have Flash Player built-in. As such, Chrome will automatically update itself when new versions of Flash Player are available. Nonetheless, it is always a good practice to check for updates yourself. You are responsible for keeping yourself safe while online.
It has been one month since Adobe last released security updates for Flash Player. On October 16, 2017, Adobe released an update that patched one critical vulnerability in Flash Player.
References for November 14, 2017, Adobe Flash Player Critical Update
Adobe Security Bulletin: Security updates available for Adobe Flash Player
Adobe PSIRT Blog Post: Security Bulletins posted
US-CERT: Adobe Releases Security Updates
Thank you for visiting Tech Help Knowledgebase to learn about the 5 vulnerabilities patched in Flash Player November 2017 update. If you liked this article, follow us on Twitter @techhelpkb and subscribe to our YouTube channel to keep in the loop.
Image Credit: Pixabay / Angela_Yuriko_Smith