5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.071 Low
EPSS
Percentile
93.9%
09/21/2015
Critical
Multiple serious vulnerabilities have been found in Adobe products. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, execute arbitrary code or obtain sensitive information.
Adobe Flash Player versions earlier than 19.0.0.185
Adobe Flash Player ESR versions earlier than 18.0.0.241
Adobe Flash Player for Linux versions earlier than 11.2.202.521
AIR SDK & runtime versions earlier than 19.0.0.190
Update to the latest version
Get Flash Player
Get AIR
ACE
Public exploits exist for this vulnerability.
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5571
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5572
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5576
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-6679
get.adobe.com/air/
get.adobe.com/flashplayer/
helpx.adobe.com/security/products/flash-player/apsb15-23.html
statistics.securelist.com/vulnerability-scan/month
threats.kaspersky.com/en/product/Adobe-AIR/
threats.kaspersky.com/en/product/Adobe-Flash-Player-ActiveX/
threats.kaspersky.com/en/product/Adobe-Flash-Player-NPAPI/
threats.kaspersky.com/en/product/Adobe-Flash-Player-PPAPI/