Memory Corruption in Adobe Flash Player and AIR Products
CVE-2015-8444

Currently unrated

Key Information:

Vendor: Adobe
Status: Air Sdk; Air Sdk \& Compiler
Vendor: CVE Published:; 10 December 2015

Summary

A memory corruption vulnerability exists in various versions of Adobe Flash Player and Adobe AIR products, allowing attackers to exploit unspecified vectors. Successful exploitation may lead to arbitrary code execution or denial of service, potentially compromising user data and system integrity.

References

http://lists.opensuse.org/opensuse-security-announce/2015...

vendor-advisoryx_refsource_SUSE

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/do...

x_refsource_CONFIRM

https://helpx.adobe.com/security/products/flash-player/ap...

x_refsource_CONFIRM

EPSS Score

6% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Dec 10, 2015
Vulnerability Reserved
Dec 2, 2015