Adobe published two security bulletins today:
APSB-22  : fixes 3 vulnerabilities in Adobe Flash Player as well as in Adobe Air. The vulnerabilities are rated with a priority of "1" for Flash Player running on Windows and OS X , which means they have already been exploited in targeted attacks.
APSB-23  : another 3 vulnerabilities, but this time in Cold Fusion. The priority for these updates is "2" which indicates that they have not yet been exploited in the wild.
Defending Web Applications Security Essentials - SANS San Francisco Spring 2020
Oct 14th 2014
5 years ago