CVE-2015-3079

Risk Scores

Affected Products

Exploit Intelligence

• Converted Metasploit exploits for Adobe Flash vulnerabilities CVE-2015-3090, CVE-2015-3105, CVE-2015-5119, and CVE-2015-5122 to a Python3 script. (github-poc)
• Converted Metasploit exploits for Adobe Flash vulnerabilities CVE-2015-3090, CVE-2015-3105, CVE-2015-5119, and CVE-2015-5122 to a Python3 script. (github-poc)
• Converted Metasploit exploits for Adobe Flash vulnerabilities CVE-2015-3090, CVE-2015-3105, CVE-2015-5119, and CVE-2015-5122 to a Python3 script. (github-poc)
• Converted Metasploit exploits for Adobe Flash vulnerabilities CVE-2015-3090, CVE-2015-3105, CVE-2015-5119, and CVE-2015-5122 to a Python3 script. (github-poc)
• Converted Metasploit exploits for Adobe Flash vulnerabilities CVE-2015-3090, CVE-2015-3105, CVE-2015-5119, and CVE-2015-5122 to a Python3 script. (github-poc)
• Internet-based attacker can run Flash apps in local sandboxes by using special URL schemes (PSIRT-3299, CVE-2015-3079) (hackerone)
• Internet-based attacker can run Flash apps in local sandboxes by using special URL schemes (PSIRT-3299, CVE-2015-3079) (hackerone)

Timeline

• May 13, 2015 CVE Published
• Oct 18, 2019 PoC Published
• Feb 4, 2022 EPSS Score
• May 20, 2022 EPSS Score
• Jul 12, 2022 EPSS Score
• Oct 26, 2022 EPSS Score
• Dec 18, 2022 EPSS Score
• Mar 7, 2023 EPSS Score
• May 25, 2023 EPSS Score
• Jul 16, 2023 EPSS Score
• Oct 29, 2023 EPSS Score
• Dec 21, 2023 EPSS Score

References

• https://ubuntu.com/security/CVE-2015-3079 third-party-advisory
• https://helpx.adobe.com/security/products/flash-player/apsb15-09.html third-party-advisory
• https://www.cve.org/CVERecord?id=CVE-2015-3079 third-party-advisory