Use-after-free Vulnerability in Adobe Flash Player and Adobe AIR
CVE-2015-0308

Currently unrated

Key Information:

Vendor: Adobe
Status: Adobe Air
Vendor: CVE Published:; 13 January 2015

Summary

A use-after-free vulnerability exists in Adobe Flash Player and Adobe AIR, affecting versions prior to specific updates. This flaw allows attackers to execute arbitrary code on affected systems via unspecified vectors. Security patches are available, and users are encouraged to update their software to mitigate the risk of exploitation. The vulnerability affects various operating systems, including Windows, OS X, Linux, and Android, highlighting the need for regular software updates to maintain security.

References

http://secunia.com/advisories/62371

third-party-advisoryx_refsource_SECUNIA

http://security.gentoo.org/glsa/glsa-201502-02.xml

vendor-advisoryx_refsource_GENTOO

http://secunia.com/advisories/62740

third-party-advisoryx_refsource_SECUNIA

EPSS Score

5% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jan 13, 2015
Vulnerability Reserved
Dec 1, 2014