CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

BDU FSTEC•added 2017/04/24 12:0 a.m.•4 views

The vulnerability of the Flash Player software, which allows a violator to execute arbitrary code

The vulnerability of the ActionScript2 parser in the Flash Player software arises from reading data beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code memory corruption remotely...

10CVSS8.4AI score0.0763EPSS

Exploits0References4Affected Software1

BDU FSTEC•added 2017/04/24 12:0 a.m.•5 views

The vulnerability of the Flash Player software, which allows a violator to execute arbitrary code

The vulnerability of the ActionScript2 component of the Flash Player software platform is related to the use of memory after it is freed when method properties are set. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS8.1AI score0.09511EPSS

Exploits0References4Affected Software1

NVD•added 2017/04/12 2:59 p.m.•19 views

CVE-2017-3062

Adobe Flash Player versions 25.0.0.127 and earlier have an exploitable use after free vulnerability in ActionScript2 when creating a getter/setter property. Successful exploitation could lead to arbitrary code execution...

10CVSS9.8AI score0.09511EPSS

NVD•added 2017/04/12 2:59 p.m.•24 views

CVE-2017-3060

Adobe Flash Player versions 25.0.0.127 and earlier have an exploitable memory corruption vulnerability in the ActionScript2 code parser. Successful exploitation could lead to arbitrary code execution...

10CVSS9.9AI score0.0763EPSS

NVD•added 2017/04/12 2:59 p.m.•22 views

CVE-2017-3063

Adobe Flash Player versions 25.0.0.127 and earlier have an exploitable use after free vulnerability in the ActionScript2 NetStream class. Successful exploitation could lead to arbitrary code execution...

10CVSS9.8AI score0.08894EPSS

OSV•added 2017/04/12 2:59 p.m.•4 views

CVE-2017-3062

9.8CVSS6AI score0.09511EPSS

UbuntuCve•added 2017/04/12 2:59 p.m.•32 views

CVE-2017-3063

10CVSS7.4AI score0.08894EPSS

Prion•added 2017/04/12 2:59 p.m.•19 views

Memory corruption

10CVSS9.6AI score0.0763EPSS

Prion•added 2017/04/12 2:59 p.m.•21 views

Design/Logic Flaw

10CVSS9.6AI score0.08894EPSS

UbuntuCve•added 2017/04/12 2:59 p.m.•26 views

CVE-2017-3062

10CVSS7.4AI score0.09511EPSS

UbuntuCve•added 2017/04/12 2:59 p.m.•30 views

CVE-2017-3060

10CVSS7.4AI score0.0763EPSS

Prion•added 2017/04/12 2:59 p.m.•18 views

Design/Logic Flaw

10CVSS9.5AI score0.09511EPSS

OSV•added 2017/04/12 2:59 p.m.•1 views

UBUNTU-CVE-2017-3060

9.8CVSS7.6AI score0.0763EPSS

Exploits0References3

OSV•added 2017/04/12 2:59 p.m.•1 views

UBUNTU-CVE-2017-3063

9.8CVSS7.6AI score0.08894EPSS

Exploits0References3

OSV•added 2017/04/12 2:59 p.m.•0 views

UBUNTU-CVE-2017-3062

9.8CVSS6.1AI score0.09511EPSS

Exploits0References3

Cvelist•added 2017/04/12 2:0 p.m.•24 views

CVE-2017-3063

9.7AI score0.08894EPSS

Exploits0References5

CVE•added 2017/04/12 2:0 p.m.•80 views

CVE-2017-3062

Adobe Flash Player: CVE-2017-3062 is a use-after-free vulnerability in ActionScript2 when creating a getter/setter property, affecting Flash Player 25.0.0.127 and earlier. Successful exploitation could lead to arbitrary code execution. The issue is caused by a memory-management flaw in the affect...

10CVSS9.5AI score0.09511EPSS

CVE•added 2017/04/12 2:0 p.m.•80 views

CVE-2017-3060

Adobe Flash Player, versions 25.0.0.127 and earlier, contains a memory corruption vulnerability in the ActionScript2 parser that could lead to arbitrary code execution. Evidence across multiple connected advisories indicates updating to 25.0.0.148 mitigates the issue (APS B17-10) and patches CVE-...

10CVSS9.6AI score0.0763EPSS