VDB
CVE-2017-11281
CVE-2017-11281
PUBLISHED
Adobe Flash Player has an exploitable memory corruption vulnerability in the text handling function. Successful exploitation could lead to arbitrary code execution. This affects 26.0.0.151 and earlier.
EPSS 60.93% · 98.3th percentile
Risk Scores
EPSS Score
60.93%
98.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu:16.04:LTS | flashplugin-nonfree | 0, 11.2.202.540ubuntu2, 11.2.202.548ubuntu1 |
| Ubuntu:14.04:LTS | flashplugin-nonfree | 11.2.202.508ubuntu0.14.04.1, 11.2.202.535ubuntu0.14.04.1, * |
Exploit Intelligence
- https://www.youtube.com/watch?v=CvmnUeza9zw (nist-nvd)
- CIRCL exploited: CVE-2017-11281 (circl-sighting)
- CIRCL exploited: CVE-2017-11281 (circl-sighting)
- 100710 (circl)
- GLSA-201709-16 (circl)
- https://helpx.adobe.com/security/products/flash-player/apsb17-28.html (circl)
- RHSA-2017:2702 (circl)
- 1039314 (circl)
- 42781 (cve.org)
- 42782 (cve.org)
…and 4 more exploits
Timeline
- Sep 13, 2017 CVE Published
- Sep 25, 2017 PoC Published
- Sep 28, 2017 PoC Published
- Apr 14, 2021 EPSS Score
- Aug 24, 2021 EPSS Score
- Dec 27, 2021 EPSS Score
- Feb 4, 2022 EPSS Score
- May 2, 2022 EPSS Score
- Sep 5, 2022 EPSS Score
- Jan 8, 2023 EPSS Score
- Mar 11, 2023 EPSS Score
- May 13, 2023 EPSS Score
References
- https://ubuntu.com/security/CVE-2017-11281 third-party-advisory
- https://rhn.redhat.com/errata/RHSA-2017-2702.html third-party-advisory
- https://www.cve.org/CVERecord?id=CVE-2017-11281 third-party-advisory