← Back

CVE-2015-5124

nvd nist
Published: Jul 20, 2015Modified: May 6, 2026

JSON object

Loading...
10.0
Vector
AV:N/AC:L/Au:N/C:C/I:C/A:C
Exploitability: 10.0 / Impact: 10.0
Source: NVD

Description

Adobe Flash Player before 13.0.0.302 and 14.x through 18.x before 18.0.0.203 on Windows and OS X and before 11.2.202.481 on Linux, Adobe AIR before 18.0.0.180, Adobe AIR SDK before 18.0.0.180, and Adobe AIR SDK & Compiler before 18.0.0.180 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2015-3117, CVE-2015-3123, CVE-2015-3130, CVE-2015-3133, CVE-2015-3134, and CVE-2015-4431.

Affected (26)

Adobe
4 products
Air
Air Sdk
Air Sdk & Compiler
Flash Player
Opensuse
1 product
Evergreen
Configuration A
3 vulnerable
Vulnerable SoftwareAffected Versions
Air
Up to 18.0.0.144
Air Sdk
Up to 18.0.0.144
Air Sdk & Compiler
Up to 18.0.0.144
Configuration B
21 vulnerable · 2 platform
Vulnerable SoftwareAffected Versions
Adobe
Flash Player
Up to 13.0.0.289
Flash Player
Version 14.0.0.125
Flash Player
Version 14.0.0.145
Flash Player
Version 14.0.0.176
Flash Player
Version 14.0.0.179
Flash Player
Version 15.0.0.152
Flash Player
Version 15.0.0.167
Flash Player
Version 15.0.0.189
Flash Player
Version 15.0.0.223
Flash Player
Version 15.0.0.239
Flash Player
Version 15.0.0.246
Flash Player
Version 16.0.0.235
Flash Player
Version 16.0.0.257
Flash Player
Version 16.0.0.287
Flash Player
Version 16.0.0.296
Flash Player
Version 17.0.0.134
Flash Player
Version 17.0.0.169
Flash Player
Version 17.0.0.188
Flash Player
Version 17.0.0.190
Flash Player
Version 18.0.0.160
Flash Player
Version 18.0.0.194
Running on/withPlatform Versions
Apple
Mac Os X
All versions
Microsoft
Windows
All versions
Configuration C
1 vulnerable
Vulnerable SoftwareAffected Versions
Evergreen
Version 11.4
Configuration D
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Flash Player
Up to 11.2.202.468
Running on/withPlatform Versions
Linux
Linux Kernel
All versions

Related CWEs

CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

References (12)

Source: psirt@adobe.com
Third Party Advisory
Source: psirt@adobe.com
Source: psirt@adobe.com
Third Party AdvisoryVDB Entry
Source: psirt@adobe.com
Source: psirt@adobe.com
Vendor Advisory
Source: psirt@adobe.com
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.