Back
CVE-2012-2034
HIGH
CISA KEV
Adobe Flash Player before 10.3.183.20 and 11.x before 11.3.300.257 on Windows and Mac OS X; before 10.3.183.20 and 11.x before 11.2.202.236 on Linux; before 11.1.111.10 on Android 2.x and 3.x; and before 11.1.115.9 on Android 4.x, and Adobe AIR before 3.3.0.3610, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2012-2037.
Published: Jun 9, 2012
Modified: Apr 21, 2026
CWE-119
CWE-119
CVSS Metrics
CVSSv3
Attack Vector:
NETWORK
Attack Complexity:
HIGH
Privileges Required:
NONE
User Interaction:
REQUIRED
Scope:
UNCHANGED
Confidentiality Impact:
HIGH
Integrity Impact:
HIGH
Availability Impact:
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected Products (17)
| Vendor | Product | Version |
|---|---|---|
| adobe | flash_player | * |
| adobe | flash_player | * |
| adobe | flash_player | * |
| adobe | air | * |
| opensuse | opensuse | 11.4 |
| opensuse | opensuse | 12.1 |
| suse | linux_enterprise_desktop | 10 |
| suse | linux_enterprise_desktop | 11 |
| suse | linux_enterprise_desktop | 11 |
| redhat | enterprise_linux_desktop | 5.0 |
| redhat | enterprise_linux_desktop | 6.0 |
| redhat | enterprise_linux_eus | 6.2 |
| redhat | enterprise_linux_server | 5.0 |
| redhat | enterprise_linux_server | 6.0 |
| redhat | enterprise_linux_server_aus | 6.2 |
| redhat | enterprise_linux_workstation | 5.0 |
| redhat | enterprise_linux_workstation | 6.0 |
References (9)
- http://lists.opensuse.org/opensuse-security-announce/2012-06/msg00006.html Mailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2012-06/msg00007.html Mailing List, Third Party Advisory
- http://rhn.redhat.com/errata/RHSA-2012-0722.html Third Party Advisory
- http://www.adobe.com/support/security/bulletins/apsb12-14.html Vendor Advisory
- http://lists.opensuse.org/opensuse-security-announce/2012-06/msg00006.html Mailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2012-06/msg00007.html Mailing List, Third Party Advisory
- http://rhn.redhat.com/errata/RHSA-2012-0722.html Third Party Advisory
- http://www.adobe.com/support/security/bulletins/apsb12-14.html Vendor Advisory
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2012-2034 US Government Resource
Risk Scores
CVSS Score
7.5 / 10
EPSS Score
10.29%
Top 7% most likely to be exploited
Threat Score
63.1 / 100
CISA Known Exploited
Date Added:
2022-03-28
Due Date:
2022-04-18
Required Action:
The impacted product is end-of-life and should be disconnected if still in use.
Data Sources
NVD
CISA KEV
EPSS