CVE-2015-0305

Adobe Flash Player before 13.0.0.260 and 14.x through 16.x before 16.0.0.257 on Windows and OS X and before 11.2.202.429 on Linux, Adobe AIR before 16.0.0.245 on Windows and OS X and before 16.0.0.272 on Android, Adobe AIR SDK before 16.0.0.272, and Adobe AIR SDK & Compiler before 16.0.0.272 allow attackers to execute arbitrary code by leveraging an unspecified "type confusion."
Severity
UNKNOWN
AV:N/AC:M/Au:N/C:C/I:C/A:C
Atk. Vector
NETWORK
Atk. Complexity
MEDIUM
Base Score
CVSS 3.x
EPSS Score
Percentile: 88%
VendorProductVersion
adobeadobe_air_sdk_and_compiler
𝑥
≤ 15.0.0.356
adobeflash_player
𝑥
≤ 11.2.202.425
adobeadobe_air
𝑥
≤ 15.0.0.356
adobeadobe_air_sdk
𝑥
≤ 15.0.0.356
adobeflash_player
𝑥
≤ 13.0.0.259
adobeflash_player
14.0.0.125
adobeflash_player
14.0.0.145
adobeflash_player
14.0.0.176
adobeflash_player
14.0.0.179
adobeflash_player
15.0.0.144
adobeflash_player
15.0.0.152
adobeflash_player
15.0.0.167
adobeflash_player
15.0.0.189
adobeflash_player
15.0.0.223
adobeflash_player
15.0.0.238
adobeflash_player
15.0.0.239
adobeflash_player
15.0.0.246
adobeflash_player
16.0.0.234
adobeflash_player
16.0.0.235
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
adobe-flashplugin
utopic
Fixed 11.2.202.429-0utopic1
released
trusty
Fixed 11.2.202.429-0trusty1
released
precise
Fixed 11.2.202.429-0precise1
released
lucid
ignored
flashplugin-nonfree
utopic
Fixed 11.2.202.429ubuntu0.14.10.1
released
trusty
Fixed 11.2.202.429ubuntu0.14.04.1
released
precise
Fixed 11.2.202.429ubuntu0.12.04.1
released
lucid
ignored