Adobe Flash Player Vulnerability in Windows and OS X
CVE-2015-8459

10CRITICAL

Key Information:

Vendor
Adobe
Status
Air Sdk
Air Sdk \& Compiler
Vendor
CVE Published:
28 December 2015

Summary

This security vulnerability impacts multiple versions of Adobe Flash Player and Adobe AIR, which can allow attackers to execute arbitrary code or potentially cause a denial of service due to memory corruption. The issue arises from unspecified vectors, enabling malicious users to exploit the flaws and compromise user systems if unpatched. Users should upgrade to the latest versions to protect against such threats.

References

http://lists.opensuse.org/opensuse-security-announce/2015...
vendor-advisoryx_refsource_SUSE
http://www.securitytracker.com/id/1034544
vdb-entryx_refsource_SECTRACK
http://rhn.redhat.com/errata/RHSA-2015-2697.html
vendor-advisoryx_refsource_REDHAT

EPSS Score

8% chance of being exploited in the next 30 days.

CVSS V3.1

Score:
10
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.