CVE-2012-2034

Publication date 9 June 2012

Last updated 25 August 2025

Ubuntu priority

Cvss 3 Severity Score

Description

Adobe Flash Player before 10.3.183.20 and 11.x before 11.3.300.257 on Windows and Mac OS X; before 10.3.183.20 and 11.x before 11.2.202.236 on Linux; before 11.1.111.10 on Android 2.x and 3.x; and before 11.1.115.9 on Android 4.x, and Adobe AIR before 3.3.0.3610, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2012-2037.

Status

Show unmaintained releases

Package	Ubuntu Release	Status
adobe-flashplugin	12.04 LTS precise	Fixed 11.2.202.236-0precise1
	11.10 oneiric	Fixed 11.2.202.235-0oneiric1
	11.04 natty	Fixed 11.2.202.235-0natty1
	10.04 LTS lucid	Fixed 11.2.202.235-0lucid1
	8.04 LTS hardy	Ignored end of life
flashplugin-nonfree	12.04 LTS precise	Fixed 11.2.202.236ubuntu0.12.04.1
	11.10 oneiric	Fixed 11.2.202.236ubuntu0.11.10.1
	11.04 natty	Fixed 11.2.202.236ubuntu0.11.04.1
	10.04 LTS lucid	Fixed 11.2.202.236ubuntu0.10.04.1
	8.04 LTS hardy	Ignored end of life

Severity score breakdown

Parameter	Value
Base score	7.5 · High
Attack vector	Network
Attack complexity	High
Privileges required	None
User interaction	Required
Scope	Unchanged
Confidentiality	High
Integrity impact	High
Availability impact	High
Vector	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

CVE-2012-2034

Cvss 3 Severity Score

Description

Status

Severity score breakdown

References

Other references