CVE-2015-0304 — Vulnetix

Try Vulnetix Request Demo

CVE-2015-0304 PUBLISHED

Heap-based buffer overflow in Adobe Flash Player before 13.0.0.260 and 14.x through 16.x before 16.0.0.257 on Windows and OS X and before 11.2.202.429 on Linux, Adobe AIR before 16.0.0.245 on Windows and OS X and before 16.0.0.272 on Android, Adobe AIR SDK before 16.0.0.272, and Adobe AIR SDK & Compiler before 16.0.0.272 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2015-0309.

EPSS 9.91% · 93.0th percentile

Risk Scores

EPSS Score

9.91%

93.0th percentile

Affected Products

Vendor	Product	Versions
Ubuntu:14.04:LTS	flashplugin-nonfree	0, 11.2.202.310ubuntu1, 11.2.202.327ubuntu0.13.10.1

Timeline

Jan 13, 2015 CVE Published
Feb 4, 2022 EPSS Score
Mar 7, 2023 EPSS Score
Mar 13, 2023 EPSS Score
Sep 20, 2023 EPSS Score
Mar 29, 2024 EPSS Score
May 19, 2024 EPSS Score
Jul 9, 2024 EPSS Score
Aug 6, 2024 CVE Updated
Oct 9, 2024 EPSS Score
Jan 11, 2025 EPSS Score
Mar 17, 2025 EPSS Score

References

https://ubuntu.com/security/CVE-2015-0304 third-party-advisory
http://helpx.adobe.com/security/products/flash-player/apsb15-01.html third-party-advisory
https://www.cve.org/CVERecord?id=CVE-2015-0304 third-party-advisory

Open in Interactive Console →