Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2015-0309
HistoryJan 13, 2015 - 11:59 p.m.

CVE-2015-0309

2015-01-1323:59:07
CWE-119
[email protected]
web.nvd.nist.gov
7

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.8

Confidence

Low

EPSS

0.137

Percentile

95.7%

JSON

Heap-based buffer overflow in Adobe Flash Player before 13.0.0.260 and 14.x through 16.x before 16.0.0.257 on Windows and OS X and before 11.2.202.429 on Linux, Adobe AIR before 16.0.0.245 on Windows and OS X and before 16.0.0.272 on Android, Adobe AIR SDK before 16.0.0.272, and Adobe AIR SDK & Compiler before 16.0.0.272 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2015-0304.

Affected configurations

Nvd
Node
adobeadobe_airRange15.0.0.356android
Node
adobeadobe_air_sdk_and_compilerRange15.0.0.356
Node
adobeflash_playerRange13.0.0.259
OR
adobeflash_playerMatch14.0.0.125
OR
adobeflash_playerMatch14.0.0.145
OR
adobeflash_playerMatch14.0.0.176
OR
adobeflash_playerMatch14.0.0.179
OR
adobeflash_playerMatch15.0.0.144
OR
adobeflash_playerMatch15.0.0.152
OR
adobeflash_playerMatch15.0.0.167
OR
adobeflash_playerMatch15.0.0.189
OR
adobeflash_playerMatch15.0.0.223
OR
adobeflash_playerMatch15.0.0.238
OR
adobeflash_playerMatch15.0.0.239
OR
adobeflash_playerMatch15.0.0.246
OR
adobeflash_playerMatch16.0.0.234
OR
adobeflash_playerMatch16.0.0.235
AND
applemac_os_x
OR
microsoftwindows
Node
adobeflash_playerMatch11.2.202.425
AND
linuxlinux_kernel
Node
adobeadobe_airRange15.0.0.356
AND
applemac_os_x
OR
microsoftwindows
Node
adobeadobe_air_sdkRange15.0.0.356
VendorProductVersionCPE
adobeadobe_air*cpe:2.3:a:adobe:adobe_air:*:*:*:*:*:android:*:*
adobeadobe_air_sdk_and_compiler*cpe:2.3:a:adobe:adobe_air_sdk_and_compiler:*:*:*:*:*:*:*:*
adobeflash_player*cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*
adobeflash_player14.0.0.125cpe:2.3:a:adobe:flash_player:14.0.0.125:*:*:*:*:*:*:*
adobeflash_player14.0.0.145cpe:2.3:a:adobe:flash_player:14.0.0.145:*:*:*:*:*:*:*
adobeflash_player14.0.0.176cpe:2.3:a:adobe:flash_player:14.0.0.176:*:*:*:*:*:*:*
adobeflash_player14.0.0.179cpe:2.3:a:adobe:flash_player:14.0.0.179:*:*:*:*:*:*:*
adobeflash_player15.0.0.144cpe:2.3:a:adobe:flash_player:15.0.0.144:*:*:*:*:*:*:*
adobeflash_player15.0.0.152cpe:2.3:a:adobe:flash_player:15.0.0.152:*:*:*:*:*:*:*
adobeflash_player15.0.0.167cpe:2.3:a:adobe:flash_player:15.0.0.167:*:*:*:*:*:*:*
Rows per page:
1-10 of 231

Related

prion 2
ubuntucve 2
cvelist 2
cve 2
nvd 1
checkpoint_advisories 2
nessus 15
kaspersky 1
suse 5
securityvulns 1
openvas 9
archlinux 2
redhat 1
freebsd 1
mageia 1
gentoo 1
prion
prion
Heap overflow
2015-01-13 23:59:00
Heap overflow
2015-01-13 23:59:00
ubuntucve
ubuntucve
CVE-2015-0309
2015-01-13 00:00:00
CVE-2015-0304
2015-01-13 00:00:00
cvelist
cvelist
CVE-2015-0309
2015-01-13 23:00:00
CVE-2015-0304
2015-01-13 23:00:00
cve
cve
CVE-2015-0304
2015-01-13 23:59:03
CVE-2015-0309
2015-01-13 23:59:07
nvd
nvd
CVE-2015-0304
2015-01-13 23:59:03
checkpoint_advisories
checkpoint_advisories
Adobe Flash Player Heap Buffer Overflow (APSB15-01: CVE-2015-0309)
2015-01-29 00:00:00
Adobe Flash Player Buffer Overflow (APSB15-01: CVE-2015-0304)
2015-01-26 00:00:00
nessus
nessus
SuSE 11.3 Security Update : flash-player (SAT Patch Number 10164)
2015-01-16 00:00:00
openSUSE Security Update : flash-player (openSUSE-SU-2015:0059-1)
2015-01-16 00:00:00
Google Chrome < 39.0.2171.99 Multiple Vulnerabilities (Mac OS X)
2015-01-13 00:00:00
kaspersky
kaspersky
KLA10439 Multiple vulnerabilities in Adobe products
2015-01-13 00:00:00
suse
suse
flashplayer to version 11.2.202.429 (important)
2015-01-15 22:04:43
Security update for flash-player (important)
2015-01-15 17:05:15
Security update for flash-player (important)
2015-01-16 01:04:46
securityvulns
securityvulns
Adobe Flash Player multiple security vulnerabilities
2015-01-19 00:00:00
openvas
openvas
Adobe Flash Player Multiple Vulnerabilities-01 (Jan 2015) - Mac OS X
2015-01-16 00:00:00
SUSE: Security Advisory for flash-player (SUSE-SU-2015:0062-1)
2015-10-16 00:00:00
Mageia: Security Advisory (MGASA-2015-0024)
2022-01-28 00:00:00
archlinux
archlinux
flashplugin: multiple issues
2014-01-15 00:00:00
flashplugin: multiple issues
2015-01-23 00:00:00
redhat
redhat
(RHSA-2015:0052) Critical: flash-plugin security update
2015-01-14 00:00:00
freebsd
freebsd
Adobe Flash Player -- multiple vulnerabilities
2015-01-13 00:00:00
mageia
mageia
Updated flash-player-plugin packages fix security vulnerabilities
2015-01-15 00:55:48
gentoo
gentoo
Adobe Flash Player: Multiple vulnerabilities
2015-02-06 00:00:00

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.8

Confidence

Low

EPSS

0.137

Percentile

95.7%

JSON
Related for NVD:CVE-2015-0309
prion2ubuntucve2cvelist2cve2nvd1checkpoint_advisories2nessus15kaspersky1suse5securityvulns1openvas9archlinux2redhat1freebsd1mageia1gentoo1