Use-After-Free Vulnerability in Adobe Flash Player and AIR Products
CVE-2015-8061

Currently unrated

Key Information:

Vendor: Adobe
Status: Air
Vendor: CVE Published:; 10 December 2015

Summary

This vulnerability in Adobe Flash Player and Adobe AIR allows attackers to exploit a use-after-free condition, leading to arbitrary code execution. It affects various versions of these products across multiple operating systems, including Windows, OS X, and Linux. Attackers can leverage this flaw to execute malicious scripts and gain unauthorized access to user systems, making prompt updates and patches essential for security.

References

http://lists.opensuse.org/opensuse-security-announce/2015...

vendor-advisoryx_refsource_SUSE

https://helpx.adobe.com/security/products/flash-player/ap...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/78715

vdb-entryx_refsource_BID

EPSS Score

11% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Dec 10, 2015
Vulnerability Reserved
Nov 2, 2015