Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2015-0305
HistoryJan 13, 2015 - 11:59 p.m.

CVE-2015-0305

2015-01-1323:59:04
[email protected]
web.nvd.nist.gov
6

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.5

Confidence

Low

EPSS

0.018

Percentile

88.4%

JSON

Adobe Flash Player before 13.0.0.260 and 14.x through 16.x before 16.0.0.257 on Windows and OS X and before 11.2.202.429 on Linux, Adobe AIR before 16.0.0.245 on Windows and OS X and before 16.0.0.272 on Android, Adobe AIR SDK before 16.0.0.272, and Adobe AIR SDK & Compiler before 16.0.0.272 allow attackers to execute arbitrary code by leveraging an unspecified “type confusion.”

Affected configurations

Nvd
Node
adobeadobe_air_sdk_and_compilerRange15.0.0.356
Node
adobeflash_playerRange11.2.202.425
AND
linuxlinux_kernel
Node
adobeadobe_airRange15.0.0.356android
Node
adobeadobe_airRange15.0.0.356
AND
applemac_os_x
OR
microsoftwindows
Node
adobeadobe_air_sdkRange15.0.0.356
Node
adobeflash_playerRange13.0.0.259
OR
adobeflash_playerMatch14.0.0.125
OR
adobeflash_playerMatch14.0.0.145
OR
adobeflash_playerMatch14.0.0.176
OR
adobeflash_playerMatch14.0.0.179
OR
adobeflash_playerMatch15.0.0.144
OR
adobeflash_playerMatch15.0.0.152
OR
adobeflash_playerMatch15.0.0.167
OR
adobeflash_playerMatch15.0.0.189
OR
adobeflash_playerMatch15.0.0.223
OR
adobeflash_playerMatch15.0.0.238
OR
adobeflash_playerMatch15.0.0.239
OR
adobeflash_playerMatch15.0.0.246
OR
adobeflash_playerMatch16.0.0.234
OR
adobeflash_playerMatch16.0.0.235
AND
applemac_os_x
OR
microsoftwindows
VendorProductVersionCPE
adobeadobe_air_sdk_and_compiler*cpe:2.3:a:adobe:adobe_air_sdk_and_compiler:*:*:*:*:*:*:*:*
adobeflash_player*cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*
linuxlinux_kernel*cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
adobeadobe_air*cpe:2.3:a:adobe:adobe_air:*:*:*:*:*:android:*:*
adobeadobe_air*cpe:2.3:a:adobe:adobe_air:*:*:*:*:*:*:*:*
applemac_os_x*cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
microsoftwindows*cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*
adobeadobe_air_sdk*cpe:2.3:a:adobe:adobe_air_sdk:*:*:*:*:*:*:*:*
adobeflash_player14.0.0.125cpe:2.3:a:adobe:flash_player:14.0.0.125:*:*:*:*:*:*:*
adobeflash_player14.0.0.145cpe:2.3:a:adobe:flash_player:14.0.0.145:*:*:*:*:*:*:*
Rows per page:
1-10 of 221

Related

checkpoint_advisories 1
prion 1
ubuntucve 1
cve 1
cvelist 1
threatpost 1
nessus 15
kaspersky 1
suse 5
securityvulns 1
openvas 9
freebsd 1
mageia 1
archlinux 2
redhat 1
googleprojectzero 1
gentoo 1
checkpoint_advisories
checkpoint_advisories
Adobe Flash Player Type Confusion (APSB15-01: CVE-2015-0305)
2015-01-29 00:00:00
prion
prion
Type confusion
2015-01-13 23:59:00
ubuntucve
ubuntucve
CVE-2015-0305
2015-01-13 00:00:00
cve
cve
CVE-2015-0305
2015-01-13 23:59:04
cvelist
cvelist
CVE-2015-0305
2015-01-13 23:00:00
threatpost
threatpost
January 2015 Adobe Flash Player Security Update
2015-01-13 13:45:04
nessus
nessus
SuSE 11.3 Security Update : flash-player (SAT Patch Number 10164)
2015-01-16 00:00:00
openSUSE Security Update : flash-player (openSUSE-SU-2015:0059-1)
2015-01-16 00:00:00
Google Chrome < 39.0.2171.99 Multiple Vulnerabilities (Mac OS X)
2015-01-13 00:00:00
kaspersky
kaspersky
KLA10439 Multiple vulnerabilities in Adobe products
2015-01-13 00:00:00
suse
suse
flashplayer to version 11.2.202.429 (important)
2015-01-15 22:04:43
Security update for flash-player (important)
2015-01-16 01:04:46
Security update for flash-player (important)
2015-01-15 17:06:24
securityvulns
securityvulns
Adobe Flash Player multiple security vulnerabilities
2015-01-19 00:00:00
openvas
openvas
Adobe Flash Player Multiple Vulnerabilities-01 (Jan 2015) - Mac OS X
2015-01-16 00:00:00
SUSE: Security Advisory for flash-player (SUSE-SU-2015:0062-1)
2015-10-16 00:00:00
Mageia: Security Advisory (MGASA-2015-0024)
2022-01-28 00:00:00
freebsd
freebsd
Adobe Flash Player -- multiple vulnerabilities
2015-01-13 00:00:00
mageia
mageia
Updated flash-player-plugin packages fix security vulnerabilities
2015-01-15 00:55:48
archlinux
archlinux
flashplugin: multiple issues
2014-01-15 00:00:00
flashplugin: multiple issues
2015-01-23 00:00:00
redhat
redhat
(RHSA-2015:0052) Critical: flash-plugin security update
2015-01-14 00:00:00
googleprojectzero
googleprojectzero
Attacking ECMAScript Engines with Redefinition
2015-08-17 00:00:00
gentoo
gentoo
Adobe Flash Player: Multiple vulnerabilities
2015-02-06 00:00:00

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.5

Confidence

Low

EPSS

0.018

Percentile

88.4%

JSON
Related for NVD:CVE-2015-0305
checkpoint_advisories1prion1ubuntucve1cve1cvelist1threatpost1nessus15kaspersky1suse5securityvulns1openvas9freebsd1mageia1archlinux2redhat1googleprojectzero1gentoo1