Adobe has released a security update for a critical remote code execution vulnerability in Adobe Flash Player that could be exploited by simply visiting a website. The vulnerability, tracked as CVE-2020-9746, could lead to a crash that allows the attacker to execute commands on a visitor’s computer remotely. Adobe will stop distributing Flash Player on December 31st, 2020, and web browsers will no longer support the Adobe Flash plugin. Adobe Flash has long been a source of security vulnerabilities that allow attackers to install malware, execute commands, and takeover of computers.
Source: https://www.bleepingcomputer.com/news/security/adobe-fixes-critical-security-vulnerability-in-flash-player/