Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2015-7655
HistoryNov 11, 2015 - 12:59 p.m.

CVE-2015-7655

2015-11-1112:59:53
[email protected]
web.nvd.nist.gov

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.3 High

AI Score

Confidence

Low

0.909 High

EPSS

Percentile

98.9%

JSON

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.261 and 19.x before 19.0.0.245 on Windows and OS X and before 11.2.202.548 on Linux, Adobe AIR before 19.0.0.241, Adobe AIR SDK before 19.0.0.241, and Adobe AIR SDK & Compiler before 19.0.0.241 allows attackers to execute arbitrary code via crafted actionExtends arguments, a different vulnerability than CVE-2015-7651, CVE-2015-7652, CVE-2015-7653, CVE-2015-7654, CVE-2015-7656, CVE-2015-7657, CVE-2015-7658, CVE-2015-7660, CVE-2015-7661, CVE-2015-7663, CVE-2015-8042, CVE-2015-8043, CVE-2015-8044, and CVE-2015-8046.

Affected configurations

NVD
Node
adobeairRange19.0.0.190
AND
googleandroid
Node
adobeflash_playerRange11.2.202.540
AND
linuxlinux_kernelMatch-
Node
adobeair_sdkRange19.0.0.213
OR
adobeair_sdk_\&_compilerRange19.0.0.213
AND
appleiphone_os
OR
applemac_os_xMatch-
OR
googleandroid
OR
microsoftwindowsMatch-
Node
adobeflash_playerRange18.0.0.255
OR
adobeflash_playerMatch19.0.0.185
OR
adobeflash_playerMatch19.0.0.207
OR
adobeflash_playerMatch19.0.0.226
AND
applemac_os_xMatch-
OR
microsoftwindowsMatch-
Node
adobeairRange19.0.0.213
AND
applemac_os_xMatch-
OR
microsoftwindowsMatch-

Related

ubuntucve 15
prion 15
cvelist 15
nvd 14
cve 15
nessus 17
altlinux 2
openvas 7
kaspersky 2
freebsd 1
mageia 1
redhat 2
archlinux 1
checkpoint_advisories 8
gentoo 1
zdi 11
zdt 4
threatpost 1
ubuntucve
ubuntucve
CVE-2015-8043
2015-11-11 00:00:00
CVE-2015-7660
2015-11-11 00:00:00
CVE-2015-7657
2015-11-11 00:00:00
prion
prion
Design/Logic Flaw
2015-11-11 12:59:00
Design/Logic Flaw
2015-11-11 13:00:00
Design/Logic Flaw
2015-11-11 13:00:00
cvelist
cvelist
CVE-2015-7655
2015-11-11 11:00:00
CVE-2015-8046
2015-11-11 11:00:00
CVE-2015-7654
2015-11-11 11:00:00
nvd
nvd
CVE-2015-7651
2015-11-11 12:59:49
CVE-2015-7652
2015-11-11 12:59:50
CVE-2015-7656
2015-11-11 12:59:54
cve
cve
CVE-2015-7654
2015-11-11 12:59:52
CVE-2015-7658
2015-11-11 12:59:56
CVE-2015-7651
2015-11-11 12:59:49
nessus
nessus
MS KB3103688: Update for Vulnerabilities in Adobe Flash Player in Internet Explorer and Microsoft Edge
2015-11-11 00:00:00
RHEL 6 : flash-plugin (RHSA-2015:2023)
2015-11-12 00:00:00
Adobe AIR < 19.0.0.241 Multiple Vulnerabilities (APSB15-28)
2016-01-08 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 6 package adobe-flash-player version 3:11-alt56
2015-11-11 00:00:00
Security fix for the ALT Linux 7 package adobe-flash-player version 3:11-alt56
2015-11-11 00:00:00
openvas
openvas
Adobe Air Multiple Vulnerabilities (Nov 2015) - Mac OS X
2015-11-13 00:00:00
Adobe Air Multiple Vulnerabilities (Nov 2015) - Windows
2015-11-13 00:00:00
Adobe Flash Player Multiple Vulnerabilities (Nov 2015) - Linux
2015-11-13 00:00:00
kaspersky
kaspersky
KLA10690 Multiple vulnerabilities in Adobe products
2015-11-10 00:00:00
KLA10691 Multiple vulnerabilities in Google Chrome
2015-11-10 00:00:00
freebsd
freebsd
flash -- multiple vulnerabilities
2015-11-10 00:00:00
mageia
mageia
Updated flash-player-plugin packages fix security vulnerability
2015-11-11 22:20:05
redhat
redhat
(RHSA-2015:2023) Critical: flash-plugin security update
2015-11-11 00:00:00
(RHSA-2015:2024) Critical: flash-plugin security update
2015-11-11 00:00:00
archlinux
archlinux
flashplugin: multiple issues
2015-11-11 00:00:00
checkpoint_advisories
checkpoint_advisories
Adobe Flash Player Use After Free Code Execution (APSB15-28: CVE-2015-8042; CVE-2015-8043; CVE-2015-8044; CVE-2015-8046)
2015-11-18 00:00:00
Adobe Flash Player Use After Free Code Execution (APSB15-28: CVE-2015-7657; CVE-2015-7658)
2015-11-18 00:00:00
Adobe Flash Player Use After Free Code Execution (APSB15-28: CVE-2015-7660; CVE-2015-7661)
2015-11-18 00:00:00
gentoo
gentoo
Adobe Flash Player: Multiple vulnerabilities
2015-11-17 00:00:00
zdi
zdi
Adobe Flash AS2 MovieClip getBounds Use-After-Free Remote Code Execution Vulnerability
2015-11-10 00:00:00
Adobe Flash AS2 DefineFunction Invalid Free Remote Code Execution Vulnerability
2015-11-10 00:00:00
Adobe Flash AS2 MovieClip setMask Use-After-Free Remote Code Execution Vulnerability
2015-11-10 00:00:00
zdt
zdt
Adobe Flash TextField.antiAliasType Setter - Use-After-Free
2015-12-17 00:00:00
Adobe Flash MovieClip.lineStyle - Use-After-Frees
2015-12-17 00:00:00
Adobe Flash TextField.gridFitType Setter - Use-After-Free
2015-12-17 00:00:00
threatpost
threatpost
Exploit Writing and Exploit Mitigation
2015-11-12 13:33:09

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.3 High

AI Score

Confidence

Low

0.909 High

EPSS

Percentile

98.9%

JSON
Related for NVD:CVE-2015-7655
ubuntucve15prion15cvelist15nvd14cve15nessus17altlinux2openvas7kaspersky2freebsd1mageia1redhat2archlinux1checkpoint_advisories8gentoo1zdi11zdt4threatpost1