CVE-2015-3113 — Vulnetix

Try Vulnetix Request Demo

CVE-2015-3113 PUBLISHED KEV

Heap-based buffer overflow in Adobe Flash Player before 13.0.0.296 and 14.x through 18.x before 18.0.0.194 on Windows and OS X and before 11.2.202.468 on Linux allows remote attackers to execute arbitrary code via unspecified vectors, as exploited in the wild in June 2015.

EPSS 92.42% · 99.7th percentile

Risk Scores

EPSS Score

92.42%

99.7th percentile

Affected Products

Vendor	Product	Versions
Ubuntu:14.04:LTS	flashplugin-nonfree	0, 11.2.202.310ubuntu1, 11.2.202.327ubuntu0.13.10.1

Timeline

Jun 23, 2015 PoC Published
Jun 23, 2015 CVE Published
Jun 29, 2015 PoC Published
Jul 8, 2015 PoC Published
Feb 4, 2022 EPSS Score
Mar 28, 2022 EPSS Score
Apr 13, 2022 CISA KEV Added
May 19, 2022 EPSS Score
Sep 1, 2022 EPSS Score
Oct 23, 2022 EPSS Score
Dec 14, 2022 EPSS Score
Feb 4, 2023 EPSS Score

References

https://ubuntu.com/security/CVE-2015-3113 third-party-advisory
https://helpx.adobe.com/security/products/flash-player/apsb15-14.html third-party-advisory
https://www.cve.org/CVERecord?id=CVE-2015-3113 third-party-advisory
https://www.cisa.gov/known-exploited-vulnerabilities-catalog third-party-advisory

Open in Interactive Console →