VAR-201504-0548 — Vulnetix

Try Vulnetix Request Demo

VAR-201504-0548 PUBLISHED CVSS 7.800000190734863 HIGH

Adobe Flash Player before 13.0.0.281 and 14.x through 17.x before 17.0.0.169 on Windows and OS X and before 11.2.202.457 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, as exploited in the wild in April 2015, a different vulnerability than CVE-2015-0347, CVE-2015-0350, CVE-2015-0352, CVE-2015-0353, CVE-2015-0354, CVE-2015-0355, CVE-2015-0360, CVE-2015-3038, CVE-2015-3041, and CVE-2015-3042.

Risk Scores

CVSS v3.1

7.800000190734863

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected Products

Vendor	Product	Versions
n/a	n/a	n/a

Timeline

Nov 14, 2014 CVE Published
Apr 20, 2015 PoC Published
Jul 8, 2015 PoC Published
Oct 15, 2015 PoC Published
Apr 26, 2017 PoC Published
May 29, 2018 PoC Published
Oct 9, 2020 PoC Published
Oct 9, 2020 PoC Published
Oct 9, 2020 PoC Published
Oct 9, 2020 PoC Published
Jun 14, 2023 PoC Published
Dec 24, 2024 PoC Published

References

openSUSE-SU-2015:0718 vendor-advisory
SUSE-SU-2015:0722 vendor-advisory
74062 vdb
GLSA-201504-07 vendor-advisory
1032105 vdb
RHSA-2015:0813 vendor-advisory
37536 exploit
https://helpx.adobe.com/security/products/flash-player/apsb15-06.html url
openSUSE-SU-2015:0725 vendor-advisory
SUSE-SU-2015:0723 vendor-advisory
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2015-3043 url
https://github.com/cisagov/vulnrichment/issues/196 issue

Open in Interactive Console →