{"vulnerability": "cve-2018-5002", "sightings": [{"uuid": "af519c05-707c-4e41-a17b-553c218d5a8b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-5002", "type": "exploited", "source": "https://t.me/R0_Crew/654", "content": "CVE-2018-5002 - Adobe Flash Zero-Day Leveraged for Targeted Attack in Middle East\nhttps://www.icebrg.io/blog/adobe-flash-zero-day-targeted-attack\n\nCVE-2018-5002 \u2013 Analysis of the Second Wave of Flash Zero-day Exploit in 2018\nhttp://blogs.360.cn/blog/cve-2018-5002-en/\n\nSample for Flash 0 Day - CVE-2018-5002\n\n1. XLSX file with ActiveX Control to download 1st stage SWF\n2. 1st stage SWF downloads 2nd stage AES encrypted SWF\n3. 1st stage SWF decrypts and loads the 2nd stage SWF (0 day)\n\nhttps://www.virustotal.com/#/file/0b4f0d8d57fd1cb9b4408013aa7fe5986339ce66ad09c941e76626b5d872e0b5/details\n\nDecrypted SWF for CVE-2018-5002, the full hash is:\nf63a51e78116bebfa1780736d343c9eb\n\n#expdev #flash #darw1n", "creation_timestamp": "2018-06-26T20:00:58.000000Z"}, {"uuid": "a6e8efec-1000-402b-b52f-8b2431d06347", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-5002", "type": "exploited", "source": "https://t.me/information_security_channel/17806", "content": "CVE-2018-5002 \u2013 Adobe Flash Player Stack Buffer Overflow Vulnerability Alert!\nhttps://blogs.quickheal.com/cve-2018-5002-adobe-flash-player-stack-buffer-overflow-vulnerability-alert/\n\nThe recent zero-day vulnerability CVE-2018-5002 in Adobe Flash Player enables attackers to perform a Remote Code Execution on targeted machines. Adobe has released a security advisory APSB18-19 on June 7, 2018 to address this issue. According to Adobe, the in-wild exploit is being used in limited, targeted attacks and it\u2026", "creation_timestamp": "2018-06-08T12:04:25.000000Z"}, {"uuid": "1f77e732-e58d-40b3-af69-70480d385be6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-5002", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2025-02-23T02:10:20.000000Z"}, {"uuid": "b60478c5-72a4-4be6-bdb6-4f499d52bb91", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-5002", "type": "seen", "source": "MISP/d17bd6ef-d68b-317b-ac33-cdbc44c5fc57", "content": "", "creation_timestamp": "2025-08-31T03:13:01.000000Z"}, {"uuid": "46b4cebf-fd86-41ab-b3f4-b9f077e4a1f9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-5002", "type": "seen", "source": "MISP/ab0b745f-bbd5-338e-8b92-97dd0c757e9d", "content": "", "creation_timestamp": "2025-08-31T03:01:24.000000Z"}, {"uuid": "32060d78-2aa6-4143-a643-f1a3f5de1919", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-5002", "type": "seen", "source": "https://www.govcert.gov.hk/en/alerts_detail.php?id=299", "content": "", "creation_timestamp": "2018-06-08T04:00:00.000000Z"}, {"uuid": "5fdf98e5-5300-4668-a3a2-653433b5b1c8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-5002", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/2dab8983-352b-47c4-992b-78d5a9647b88", "content": "", "creation_timestamp": "2026-02-02T12:27:46.731082Z"}, {"uuid": "492047de-a4b8-41bb-8a96-d1efb391546e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-5002", "type": "seen", "source": "https://t.me/SecLabNews/2383", "content": "\u041a\u043e\u043c\u043f\u0430\u043d\u0438\u044f Adobe \u0438\u0441\u043f\u0440\u0430\u0432\u0438\u043b\u0430 \u0432 Flash Player \u0447\u0435\u0442\u044b\u0440\u0435 \u043e\u043f\u0430\u0441\u043d\u044b\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438, \u0432 \u0442\u043e\u043c \u0447\u0438\u0441\u043b\u0435 \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0443 \u043f\u0435\u0440\u0435\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u0431\u0443\u0444\u0435\u0440\u0430 (CVE-2018-5002), \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0443\u044e \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u0434.    \nAdobe \u0438\u0441\u043f\u0440\u0430\u0432\u0438\u043b\u0430 0-Day \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 Flash Player", "creation_timestamp": "2018-06-07T16:59:13.000000Z"}, {"uuid": "9f87c9d4-6d8a-4a10-b6dc-814034e911bf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-5002", "type": "seen", "source": "MISP/5b1a77cf-8390-49cc-8820-4af002de0b81", "content": "", "creation_timestamp": "2018-06-08T12:36:50.000000Z"}, {"uuid": "fd5c9816-e4d7-4210-8945-b47b703a761d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-5002", "type": "seen", "source": "MISP/c4c88202-8e00-452c-b904-ec45512ecb16", "content": "", "creation_timestamp": "2020-10-09T15:30:20.000000Z"}, {"uuid": "3e7c7ca2-f0e9-4260-8b08-38ab420128ec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-5002", "type": "seen", "source": "MISP/9f60aa3b-a31f-4633-a01d-97181c3a64f5", "content": "", "creation_timestamp": "2020-10-09T16:19:27.000000Z"}, {"uuid": "290eac4a-bc65-4c0b-a690-daf144210444", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-5002", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2023-06-14T21:10:03.000000Z"}, {"uuid": "494fffbf-d300-4624-9deb-3a7c94425e99", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-5002", "type": "seen", "source": "https://feedsin.space/feed/CISAKevBot/items/2971548", "content": "", "creation_timestamp": "2024-12-24T20:30:58.133008Z"}, {"uuid": "ae602fb6-2134-4c05-9f2b-f17b3cf25c21", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-5002", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/2dab8983-352b-47c4-992b-78d5a9647b88", "content": "", "creation_timestamp": "2026-02-02T12:27:46.731082Z"}, {"uuid": "90bdf77e-e0df-4886-b219-0dc27a74c8da", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-5002", "type": "seen", "source": "MISP/5b921273-97f4-4eab-832e-71229f590eb0", "content": "", "creation_timestamp": "2018-09-07T05:55:07.000000Z"}, {"uuid": "53c58989-11b6-4815-8cdd-f1538fcd2efc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-5002", "type": "seen", "source": "MISP/5b923242-60f8-4f5a-ae37-284aac100a5a", "content": "", "creation_timestamp": "2018-09-07T08:19:52.000000Z"}, {"uuid": "2e7c320a-38fa-4be8-94e5-9b69618003a2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-5002", "type": "seen", "source": "MISP/5b1aa332-f2e8-4903-8a85-2f7aac12042b", "content": "", "creation_timestamp": "2018-06-08T16:03:37.000000Z"}, {"uuid": "d5e15e68-f3b7-4e57-a063-5e806a73888b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2018-5002", "type": "seen", "source": "https://www.govcert.gov.hk/en/alerts_detail.php?id=299", "content": "", "creation_timestamp": "2026-03-17T14:20:15.664840Z"}]}