VDB
CVE-2015-7645
CVE-2015-7645
PUBLISHED
KEV
Adobe Flash Player 18.x through 18.0.0.252 and 19.x through 19.0.0.207 on Windows and OS X and 11.x through 11.2.202.535 on Linux allows remote attackers to execute arbitrary code via a crafted SWF file, as exploited in the wild in October 2015.
EPSS 85.17% · 99.4th percentile
Risk Scores
EPSS Score
85.17%
99.4th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu:14.04:LTS | flashplugin-nonfree | 0, 11.2.202.310ubuntu1, 11.2.202.332ubuntu1 |
Exploit Intelligence
- CIRCL seen: CVE-2015-7645 (circl-sighting)
- CIRCL seen: CVE-2015-7645 (circl-sighting)
- CIRCL exploited: CVE-2015-7645 (circl-sighting)
- CIRCL seen: CVE-2015-7645 (circl-sighting)
- CIRCL seen: CVE-2015-7645 (circl-sighting)
- CIRCL seen: CVE-2015-7645 (circl-sighting)
- CIRCL exploited: CVE-2015-7645 (circl-sighting)
- CIRCL seen: CVE-2015-7645 (circl-sighting)
- CIRCL seen: CVE-2015-7645 (circl-sighting)
- CIRCL seen: CVE-2015-7645 (circl-sighting)
…and 44 more exploits
Timeline
- Oct 14, 2015 CVE Published
- Oct 16, 2015 PoC Published
- Oct 19, 2015 PoC Published
- Nov 4, 2015 PoC Published
- Feb 2, 2016 PoC Published
- Apr 26, 2017 PoC Published
- Aug 30, 2017 PoC Published
- Mar 14, 2018 PoC Published
- Apr 28, 2020 PoC Published
- Oct 9, 2020 PoC Published
- Oct 9, 2020 PoC Published
- Oct 9, 2020 PoC Published
References
- https://ubuntu.com/security/CVE-2015-7645 third-party-advisory
- https://helpx.adobe.com/security/products/flash-player/apsa15-05.html third-party-advisory
- http://blog.trendmicro.com/trendlabs-security-intelligence/new-adobe-flash-zero-day-used-in-pawn-storm-campaign/ third-party-advisory
- https://www.cve.org/CVERecord?id=CVE-2015-7645 third-party-advisory
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog third-party-advisory
- Vulnérabilité dans Adobe Flash Player advisory