CVE-2015-3083 — Vulnetix

Try Vulnetix Request Demo

CVE-2015-3083 PUBLISHED

Adobe Flash Player before 13.0.0.289 and 14.x through 17.x before 17.0.0.188 on Windows and OS X and before 11.2.202.460 on Linux, Adobe AIR before 17.0.0.172, Adobe AIR SDK before 17.0.0.172, and Adobe AIR SDK & Compiler before 17.0.0.172 allow remote attackers to bypass intended restrictions on filesystem write operations via unspecified vectors, a different vulnerability than CVE-2015-3082 and CVE-2015-3085.

EPSS 19.91% · 95.4th percentile

Risk Scores

EPSS Score

19.91%

95.4th percentile

Affected Products

Vendor	Product	Versions
Ubuntu:14.04:LTS	flashplugin-nonfree	0, 11.2.202.310ubuntu1, 11.2.202.327ubuntu0.13.10.1

Timeline

May 13, 2015 CVE Published
Aug 19, 2015 PoC Published
Feb 4, 2022 EPSS Score
Oct 1, 2022 EPSS Score
Apr 19, 2024 EPSS Score
Mar 17, 2025 EPSS Score
Mar 18, 2025 EPSS Score
Mar 19, 2025 EPSS Score
Mar 30, 2025 EPSS Score
Apr 3, 2025 EPSS Score
Apr 4, 2025 EPSS Score
Apr 17, 2025 EPSS Score

References

https://ubuntu.com/security/CVE-2015-3083 third-party-advisory
https://helpx.adobe.com/security/products/flash-player/apsb15-09.html third-party-advisory
https://www.cve.org/CVERecord?id=CVE-2015-3083 third-party-advisory

Open in Interactive Console →