Login Sign Up

CVE-2019-8075

7.5 HIGH

📋 TL;DR

CVE-2019-8075 is a Same Origin Policy bypass vulnerability in Adobe Flash Player that allows malicious websites to access data from other domains. This affects users running Adobe Flash Player version 32.0.0.192 or earlier. Successful exploitation could lead to information disclosure of sensitive data within the current user's context.

💻 Affected Systems

Products:
  • Adobe Flash Player
Versions: 32.0.0.192 and earlier
Operating Systems: Windows, macOS, Linux, Chrome OS
Default Config Vulnerable: ⚠️ Yes
Notes: Affects all platforms where Adobe Flash Player is installed and enabled. Modern browsers have disabled Flash by default, reducing exposure.

📦 What is this software?

Chrome by Google

Google Chrome is the world's most popular web browser, used by over 3 billion users globally across Windows, macOS, Linux, Android, and iOS platforms. As a Chromium-based browser developed by Google, Chrome dominates the browser market with approximately 65% market share, making it a critical compon...

Learn more about Chrome →

Chrome by Google

Google Chrome is the world's most popular web browser, used by over 3 billion users globally across Windows, macOS, Linux, Android, and iOS platforms. As a Chromium-based browser developed by Google, Chrome dominates the browser market with approximately 65% market share, making it a critical compon...

Learn more about Chrome →

Debian Linux by Debian

View all CVEs affecting Debian Linux →

Fedora by Fedoraproject

View all CVEs affecting Fedora →

Fedora by Fedoraproject

View all CVEs affecting Fedora →

Flash Player by Adobe

View all CVEs affecting Flash Player →

Flash Player by Adobe

View all CVEs affecting Flash Player →

Flash Player by Adobe

View all CVEs affecting Flash Player →

Flash Player Desktop Runtime by Adobe

View all CVEs affecting Flash Player Desktop Runtime →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Attackers could steal sensitive user data (cookies, session tokens, personal information) from other websites the user is logged into, potentially leading to account takeover and further compromise.

🟠

Likely Case

Malicious websites could extract limited user data from other domains, potentially exposing session information or personal details that could be used for targeted attacks.

🟢

If Mitigated

With proper controls like disabling Flash or using modern browsers with Flash disabled by default, the impact is minimal as the attack vector is eliminated.

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Exploitation requires user interaction (visiting a malicious website) but the technical complexity is low. The vulnerability bypasses browser security controls.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 32.0.0.207 and later

Vendor Advisory: https://helpx.adobe.com/security/products/flash-player/apsb19-30.html

Restart Required: Yes

Instructions:

1. Update Adobe Flash Player to version 32.0.0.207 or later. 2. For Chrome/Chromium users, update to version 87.0.4280.66 or later. 3. Restart the browser after updating.

🔧 Temporary Workarounds

Disable Adobe Flash Player

all

Completely disable Flash Player in browser settings to eliminate the attack vector.

Browser-specific: In Chrome, type chrome://settings/content/flash and disable. In Firefox, type about:addons, select Plugins, set Flash to 'Never Activate'.

Use Click-to-Play

all

Configure Flash to require user permission before running on websites.

Browser-specific: In Chrome, type chrome://settings/content/flash and enable 'Ask first'. In Firefox, type about:addons, select Plugins, set Flash to 'Ask to Activate'.

🧯 If You Can't Patch

  • Disable Adobe Flash Player completely in all browsers
  • Use browser extensions that block Flash content automatically

🔍 How to Verify

Check if Vulnerable:

Check Adobe Flash Player version. If version is 32.0.0.192 or earlier, the system is vulnerable.

Check Version:

Windows: Open Control Panel > Flash Player > Advanced tab. macOS/Linux: Visit https://helpx.adobe.com/flash-player.html and click 'Check Now'.

Verify Fix Applied:

Verify Adobe Flash Player version is 32.0.0.207 or later.

📡 Detection & Monitoring

Log Indicators:

  • Unusual Flash Player crashes
  • Multiple requests to Flash content from suspicious domains
  • Security policy violation logs in browser

Network Indicators:

  • Multiple cross-origin requests from Flash content
  • Unusual data exfiltration patterns from Flash objects

SIEM Query:

source="browser" AND (event="flash_crash" OR event="security_violation") AND flash_version<="32.0.0.192"

📊 Metadata

CVE ID: CVE-2019-8075
CVSS v3 Score: 7.5 (HIGH)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Published: September 27, 2019
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON