Adobe rated the threat as “critical,” the company’s top threat level. Attackers can typically trigger such vulnerabilities after luring victims to websites hosting the attacks.
â€œAdobe is aware of reports that an exploit for this vulnerability exists in the wild,â€ the company says in its latest security bulletin.
The affected versions are Flash Player 184.108.40.206 and earlier for Windows and Macintosh as well as Flash Player 220.127.116.115 and earlier for Linux.
Adobe recommends users manually update to the latest versions of the product unless they are already using the newest versions of the Google Chrome and Internet Explorer. Flash Player installed with Google Chrome will automatically update to the latest Google Chrome version, which includes Adobe Flash Player 18.104.22.168 for Windows, Macintosh and Linux.
Windows and Mac OS are considered the most vulnerable systems, with Linux receiving a lower priority ranking. The patch can be downloaded from the Adobe Flash Player Download Center, or when prompted.