Use-After-Free Vulnerability in Adobe Flash Player and Adobe AIR
CVE-2015-8059

Currently unrated

Key Information:

Vendor: Adobe
Status: Air
Vendor: CVE Published:; 10 December 2015

Summary

This vulnerability in Adobe Flash Player and Adobe AIR occurs due to improper memory management, enabling attackers to execute arbitrary code on affected systems. It specifically impacts various versions of these products on Windows, macOS, and Linux platforms. Exploiting this vulnerability can lead to severe consequences, including unauthorized access to sensitive data and system compromise. Users are advised to update to the latest versions to mitigate risks.

References

http://lists.opensuse.org/opensuse-security-announce/2015...

vendor-advisoryx_refsource_SUSE

https://helpx.adobe.com/security/products/flash-player/ap...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/78715

vdb-entryx_refsource_BID

EPSS Score

17% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Dec 10, 2015
Vulnerability Reserved
Nov 2, 2015