Adobe Flash 0-Day Used Against South Korean Targets - SANS ISC InfoSec Forums

Security Advisory for Flash Player | APSA18-01 - Adobe Security Advisory

Adobe is aware of a report that an exploit for CVE-2018-4878 exists in the wild, and is being used in limited, targeted attacks against Windows users. These attacks leverage Office documents with embedded malicious Flash content distributed via email.

Adobe will address this vulnerability in a release planned for the week of February 5.