Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2015-8460
HistoryDec 28, 2015 - 11:59 p.m.

CVE-2015-8460

2015-12-2823:59:01
CWE-119
[email protected]
web.nvd.nist.gov
43
cve
adobe flash player
adobe air
arbitrary code execution
denial of service
memory corruption
vulnerability
security advisory

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

9.5 High

AI Score

Confidence

High

0.155 Low

EPSS

Percentile

96.0%

JSON

Adobe Flash Player before 18.0.0.324 and 19.x and 20.x before 20.0.0.267 on Windows and OS X and before 11.2.202.559 on Linux, Adobe AIR before 20.0.0.233, Adobe AIR SDK before 20.0.0.233, and Adobe AIR SDK & Compiler before 20.0.0.233 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2015-8459, CVE-2015-8636, and CVE-2015-8645.

Affected configurations

NVD
Node
adobeflash_playerRange18.0.0.268
OR
adobeflash_playerMatch19.0.0.185
OR
adobeflash_playerMatch19.0.0.207
OR
adobeflash_playerMatch19.0.0.226
OR
adobeflash_playerMatch19.0.0.245
OR
adobeflash_playerMatch20.0.0.228
OR
adobeflash_playerMatch20.0.0.235
AND
applemac_os_x
OR
microsoftwindows
Node
adobeflash_playerRange11.2.202.554
AND
linuxlinux_kernel
Node
adobeair_sdkRange20.0.0.204
OR
adobeair_sdk_\&_compilerRange20.0.0.204
AND
appleiphone_os
OR
applemac_os_x
OR
googleandroid
OR
microsoftwindows
Node
adobeairRange20.0.0.204
AND
applemac_os_x
OR
googleandroid
OR
microsoftwindows

Related

nvd 4
prion 4
cvelist 4
cve 3
ubuntucve 4
checkpoint_advisories 2
zdt 1
nessus 14
openvas 12
suse 4
mageia 1
altlinux 2
kaspersky 1
archlinux 1
freebsd 1
redhat 1
gentoo 1
nvd
nvd
CVE-2015-8636
2015-12-28 23:59:04
CVE-2015-8459
2015-12-28 23:59:00
CVE-2015-8460
2015-12-28 23:59:01
prion
prion
Memory corruption
2015-12-28 23:59:00
Memory corruption
2015-12-28 23:59:00
Memory corruption
2015-12-28 23:59:00
cvelist
cvelist
CVE-2015-8636
2015-12-28 23:00:00
CVE-2015-8459
2015-12-28 23:00:00
CVE-2015-8645
2015-12-28 23:00:00
cve
cve
CVE-2015-8459
2015-12-28 23:59:00
CVE-2015-8645
2015-12-28 23:59:13
CVE-2015-8636
2015-12-28 23:59:04
ubuntucve
ubuntucve
CVE-2015-8460
2015-12-28 00:00:00
CVE-2015-8645
2015-12-28 00:00:00
CVE-2015-8459
2015-12-28 00:00:00
checkpoint_advisories
checkpoint_advisories
Adobe Flash Player Memory Corruption (APSB16-01: CVE-2015-8636)
2015-12-28 00:00:00
Adobe Flash Player Memory Corruption (APSB16-01: CVE-2015-8645)
2015-12-28 00:00:00
zdt
zdt
Adobe Flash BlurFilter Processing - Out-of-Bounds Memset
2016-01-11 00:00:00
nessus
nessus
SUSE SLED12 Security Update : flash-player (SUSE-SU-2015:2401-1)
2016-01-04 00:00:00
MS KB3132372: Update for Vulnerabilities in Adobe Flash Player in Internet Explorer and Microsoft Edge
2015-12-30 00:00:00
openSUSE Security Update : flash-player (openSUSE-2015-975)
2016-01-04 00:00:00
openvas
openvas
Adobe Air Multiple Vulnerabilities -01 (Dec 2015) - Mac OS X
2015-12-29 00:00:00
Mageia: Security Advisory (MGASA-2015-0493)
2015-12-29 00:00:00
Adobe Air Multiple Vulnerabilities -01 (Dec 2015) - Windows
2015-12-29 00:00:00
suse
suse
Security update for flash-player (important)
2015-12-30 17:13:09
Security update for flash-player (important)
2015-12-30 15:10:27
Security update for flash-player (important)
2015-12-30 19:13:22
mageia
mageia
Updated flash-player-plugin packages fix security vulnerabilities
2015-12-28 22:23:26
altlinux
altlinux
Security fix for the ALT Linux 7 package adobe-flash-player version 3:11-alt58
2015-12-29 00:00:00
Security fix for the ALT Linux 6 package adobe-flash-player version 3:11-alt58
2015-12-29 00:00:00
kaspersky
kaspersky
KLA10727 Code execution vulnerabilities in Adobe Flash Player and AIR
2015-12-28 00:00:00
archlinux
archlinux
flashplugin, lib32-flashplugin: multiple issues
2015-12-28 00:00:00
freebsd
freebsd
flash -- multiple vulnerabilities
2015-12-28 00:00:00
redhat
redhat
(RHSA-2015:2697) Critical: flash-plugin security update
2015-12-29 00:00:00
gentoo
gentoo
Adobe Flash Player: Multiple vulnerabilities
2016-01-26 00:00:00

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

9.5 High

AI Score

Confidence

High

0.155 Low

EPSS

Percentile

96.0%

JSON
Related for CVE-2015-8460
nvd4prion4cvelist4cve3ubuntucve4checkpoint_advisories2zdt1nessus14openvas12suse4mageia1altlinux2kaspersky1archlinux1freebsd1redhat1gentoo1