Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2015-3096
HistoryJun 10, 2015 - 1:59 a.m.

CVE-2015-3096

2015-06-1001:59:39
CWE-352
[email protected]
web.nvd.nist.gov

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

6.5 Medium

AI Score

Confidence

Low

0.007 Low

EPSS

Percentile

79.8%

JSON

Adobe Flash Player before 13.0.0.292 and 14.x through 18.x before 18.0.0.160 on Windows and OS X and before 11.2.202.466 on Linux, Adobe AIR before 18.0.0.144 on Windows and before 18.0.0.143 on OS X and Android, Adobe AIR SDK before 18.0.0.144 on Windows and before 18.0.0.143 on OS X, and Adobe AIR SDK & Compiler before 18.0.0.144 on Windows and before 18.0.0.143 on OS X allow remote attackers to bypass a CVE-2014-5333 protection mechanism via unspecified vectors.

Affected configurations

NVD
Node
adobeairRange17.0.0.144
AND
googleandroid
Node
adobeflash_playerRange13.0.0.289
OR
adobeflash_playerMatch14.0.0.125
OR
adobeflash_playerMatch14.0.0.145
OR
adobeflash_playerMatch14.0.0.176
OR
adobeflash_playerMatch14.0.0.179
OR
adobeflash_playerMatch15.0.0.152
OR
adobeflash_playerMatch15.0.0.167
OR
adobeflash_playerMatch15.0.0.189
OR
adobeflash_playerMatch15.0.0.223
OR
adobeflash_playerMatch15.0.0.239
OR
adobeflash_playerMatch15.0.0.246
OR
adobeflash_playerMatch16.0.0.235
OR
adobeflash_playerMatch16.0.0.257
OR
adobeflash_playerMatch16.0.0.287
OR
adobeflash_playerMatch16.0.0.296
OR
adobeflash_playerMatch17.0.0.134
OR
adobeflash_playerMatch17.0.0.169
OR
adobeflash_playerMatch17.0.0.188
AND
applemac_os_xMatch-
OR
microsoftwindowsMatch-
Node
adobeflash_playerRange11.2.202.460
AND
linuxlinux_kernelMatch-
Node
adobeairRange17.0.0.172
OR
adobeair_sdkRange17.0.0.172
OR
adobeair_sdk_\&_compilerRange17.0.0.172
AND
applemac_os_xMatch-
OR
microsoftwindowsMatch-

Related

ubuntucve 3
prion 3
cvelist 3
cve 3
checkpoint_advisories 1
threatpost 1
nvd 2
nessus 24
suse 3
openvas 13
freebsd 1
mageia 1
redhat 2
kaspersky 2
altlinux 2
gentoo 1
ubuntucve
ubuntucve
CVE-2015-3096
2015-06-10 00:00:00
CVE-2014-5333
2014-08-19 00:00:00
CVE-2015-5571
2015-09-22 00:00:00
prion
prion
Design/Logic Flaw
2015-06-10 01:59:00
Cross site request forgery (csrf)
2014-08-19 11:16:00
Cross site request forgery (csrf)
2015-09-22 10:59:00
cvelist
cvelist
CVE-2015-3096
2015-06-10 01:00:00
CVE-2014-5333
2014-08-19 10:00:00
CVE-2015-5571
2015-09-22 10:00:00
cve
cve
CVE-2015-3096
2015-06-10 01:59:39
CVE-2014-5333
2014-08-19 11:16:59
CVE-2015-5571
2015-09-22 10:59:03
checkpoint_advisories
checkpoint_advisories
Adobe Flash Player JSONP Cross-Site Request Forgery (APSB15-11: CVE-2015-3096)
2015-06-07 00:00:00
threatpost
threatpost
June 2015 Adobe Flash Player Security Update
2015-06-09 11:39:01
nvd
nvd
CVE-2014-5333
2014-08-19 11:16:59
CVE-2015-5571
2015-09-22 10:59:03
nessus
nessus
Adobe AIR < 14.0.0.178 Multiple Vulnerabilities (APSB14-18)
2014-08-20 00:00:00
Adobe AIR < 14.0.0.137 Multiple Vulnerabilities (APSB14-17)
2014-07-08 00:00:00
SUSE SLED12 Security Update : flash-player (SUSE-SU-2015:1043-1)
2015-06-12 00:00:00
suse
suse
Security update for Adobe Flash Player (important)
2015-06-13 15:04:48
Security update for Adobe Flash Player (important)
2015-06-11 21:04:55
Security update for flash-player (important)
2015-06-11 17:07:18
openvas
openvas
SUSE: Security Advisory for flash-player (SUSE-SU-2015:1043-1)
2015-10-16 00:00:00
Mageia: Security Advisory (MGASA-2015-0248)
2015-10-15 00:00:00
Adobe AIR Multiple Vulnerabilities-01 (Aug 2014) - Windows
2014-08-19 00:00:00
freebsd
freebsd
Adobe Flash Player -- critical vulnerabilities
2015-06-09 00:00:00
mageia
mageia
Updated flash-player-plugin package fixes security vulnerability
2015-06-24 08:58:28
redhat
redhat
(RHSA-2014:1051) Critical: flash-plugin security update
2014-08-13 00:00:00
(RHSA-2015:1086) Critical: flash-plugin security update
2015-06-10 00:00:00
kaspersky
kaspersky
KLA10595 Flash Player update for Google Chrome
2015-06-10 00:00:00
KLA10593 Multiple vulnerabilities in Adobe products
2015-06-09 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 7 package adobe-flash-player version 3:11-alt45
2015-06-10 00:00:00
Security fix for the ALT Linux 6 package adobe-flash-player version 3:11-alt45
2015-06-10 00:00:00
gentoo
gentoo
Adobe Flash Player: Multiple vulnerabilities
2015-06-21 00:00:00

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

6.5 Medium

AI Score

Confidence

Low

0.007 Low

EPSS

Percentile

79.8%

JSON
Related for NVD:CVE-2015-3096
ubuntucve3prion3cvelist3cve3checkpoint_advisories1threatpost1nvd2nessus24suse3openvas13freebsd1mageia1redhat2kaspersky2altlinux2gentoo1