Adobe released a security update to address a vulnerability found in the Adobe Flash Player. To successfully exploit the vulnerability, a remote attacker could entice a targeted user to open a specially crafted Flash file, web page or document that supports embedded Flash content.
Please also note that the Adobe announced that support for Adobe Flash will be ceased at the end of 2020 and no security updates will be provided after that. Users should arrange migrating to other supported technology.
A successful exploitation could lead to remote code execution on an affected system.
Upgrade Adobe Flash Player to the following versions to address the issue. The upgrade can be obtained by using the auto-update mechanism or by downloading at the following URLs:
If you have multiple browsers, you are required to perform the Adobe Flash Player upgrade for each browser, the Flash Player version can be checked at:
http://get.adobe.com/flashplayer/about/
https://helpx.adobe.com/security/products/flash-player/apsb18-16.html
https://www.hkcert.org/my_url/en/alert/18050902
https://www.us-cert.gov/ncas/current-activity/2018/05/08/Adobe-Releases-Security-Updates-0
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-4944