Lucene search

[email protected]NVD:CVE-2015-5577

HistorySep 22, 2015 - 10:59 a.m.

CVE-2015-5577

2015-09-2210:59:09

CWE-119

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.7

Confidence

Low

EPSS

0.077

Percentile

94.2%

JSON

Adobe Flash Player before 18.0.0.241 and 19.x before 19.0.0.185 on Windows and OS X and before 11.2.202.521 on Linux, Adobe AIR before 19.0.0.190, Adobe AIR SDK before 19.0.0.190, and Adobe AIR SDK & Compiler before 19.0.0.190 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2015-5575, CVE-2015-5578, CVE-2015-5580, CVE-2015-5582, CVE-2015-5588, and CVE-2015-6677.

Affected configurations

Nvd

Node

adobeairRange≤18.0.0.143

AND

googleandroid

Node

adobeairRange≤18.0.0.199

adobeair_sdkRange≤18.0.0.199

adobeair_sdk_\&_compilerRange≤18.0.0.180

AND

applemac_os_xMatch-

microsoftwindowsMatch-

Node

adobeflash_playerRange≤13.0.0.289

adobeflash_playerMatch14.0.0.125

adobeflash_playerMatch14.0.0.145

adobeflash_playerMatch14.0.0.176

adobeflash_playerMatch14.0.0.179

adobeflash_playerMatch15.0.0.152

adobeflash_playerMatch15.0.0.167

adobeflash_playerMatch15.0.0.189

adobeflash_playerMatch15.0.0.223

adobeflash_playerMatch15.0.0.239

adobeflash_playerMatch15.0.0.246

adobeflash_playerMatch16.0.0.235

adobeflash_playerMatch16.0.0.257

adobeflash_playerMatch16.0.0.287

adobeflash_playerMatch16.0.0.296

adobeflash_playerMatch17.0.0.134

adobeflash_playerMatch17.0.0.169

adobeflash_playerMatch17.0.0.188

adobeflash_playerMatch17.0.0.190

adobeflash_playerMatch17.0.0.191

adobeflash_playerMatch18.0.0.160

adobeflash_playerMatch18.0.0.194

adobeflash_playerMatch18.0.0.203

adobeflash_playerMatch18.0.0.209

adobeflash_playerMatch18.0.0.232

AND

applemac_os_xMatch-

microsoftwindowsMatch-

Node

adobeflash_playerRange≤11.2.202.508

AND

linuxlinux_kernelMatch-

VendorProductVersionCPE
adobeair*cpe:2.3:a:adobe:air:*:*:*:*:*:*:*:*
googleandroid*cpe:2.3:o:google:android:*:*:*:*:*:*:*:*
adobeair_sdk*cpe:2.3:a:adobe:air_sdk:*:*:*:*:*:*:*:*
adobeair_sdk_\&_compiler*cpe:2.3:a:adobe:air_sdk_\&_compiler:*:*:*:*:*:*:*:*
applemac_os_x-cpe:2.3:o:apple:mac_os_x:-:*:*:*:*:*:*:*
microsoftwindows-cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
adobeflash_player*cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*
adobeflash_player14.0.0.125cpe:2.3:a:adobe:flash_player:14.0.0.125:*:*:*:*:*:*:*
adobeflash_player14.0.0.145cpe:2.3:a:adobe:flash_player:14.0.0.145:*:*:*:*:*:*:*
adobeflash_player14.0.0.176cpe:2.3:a:adobe:flash_player:14.0.0.176:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
adobe	air	*	cpe:2.3:a:adobe:air::::::::
google	android	*	cpe:2.3:o:google:android::::::::
adobe	air_sdk	*	cpe:2.3:a:adobe:air_sdk::::::::
adobe	air_sdk_\&_compiler	*	cpe:2.3:a:adobe:air_sdk_\&_compiler::::::::
apple	mac_os_x	-	cpe:2.3:o:apple:mac_os_x:-:::::::*
microsoft	windows	-	cpe:2.3:o:microsoft:windows:-:::::::*
adobe	flash_player	*	cpe:2.3:a:adobe:flash_player::::::::
adobe	flash_player	14.0.0.125	cpe:2.3:a:adobe:flash_player:14.0.0.125:::::::*
adobe	flash_player	14.0.0.145	cpe:2.3:a:adobe:flash_player:14.0.0.145:::::::*
adobe	flash_player	14.0.0.176	cpe:2.3:a:adobe:flash_player:14.0.0.176:::::::*