Use-After-Free Vulnerability in Adobe Flash Player and Adobe AIR
CVE-2015-7642

Currently unrated

Key Information:

Vendor: Adobe
Status: Air; Air Sdk; Air Sdk \& Compiler
Vendor: CVE Published:; 18 October 2015

What is CVE-2015-7642?

This vulnerability arises from a use-after-free flaw in Adobe Flash Player and Adobe AIR, which can allow attackers to execute arbitrary code on affected systems. The vulnerability is triggered through unspecified vectors, enabling exploitation that could lead to unauthorized access or control over the affected device. Users are advised to update their installations to the latest versions to mitigate risks associated with this flaw.

References

http://rhn.redhat.com/errata/RHSA-2015-2024.html

vendor-advisoryx_refsource_REDHAT

http://www.securityfocus.com/bid/77061

vdb-entryx_refsource_BID

http://rhn.redhat.com/errata/RHSA-2015-1893.html

vendor-advisoryx_refsource_REDHAT

EPSS Score

9% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 18, 2015
Vulnerability Reserved
Oct 1, 2015