CVE-2015-0311

Unspecified vulnerability in Adobe Flash Player through 13.0.0.262 and 14.x, 15.x, and 16.x through 16.0.0.287 on Windows and OS X and through 11.2.202.438 on Linux allows remote attackers to execute arbitrary code via unknown vectors, as exploited in the wild in January 2015.
Severity
CRITICAL
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Atk. Vector
NETWORK
Atk. Complexity
LOW
Priv. Required
NONE
Base Score
CVSS 3.x
EPSS Score
Percentile: 99%
VendorProductVersion
adobeflash_player
𝑥
≤ 11.2.202.438
adobeflash_player
𝑥
≤ 13.0.0.262
adobeflash_player
14.0.0.125 ≤
𝑥
< 16.0.0.287
microsoftedge
-
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
adobe-flashplugin
utopic
Fixed 11.2.202.429-0utopic1
released
trusty
Fixed 11.2.202.429-0trusty1
released
precise
Fixed 11.2.202.429-0precise1
released
lucid
ignored
flashplugin-nonfree
utopic
Fixed 11.2.202.429ubuntu0.14.10.1
released
trusty
Fixed 11.2.202.429ubuntu0.14.04.1
released
precise
Fixed 11.2.202.429ubuntu0.12.04.1
released
lucid
ignored