Vulnerability in Adobe Air
CVE-2015-5134
Use-after-free vulnerability in Adobe Flash Player before 18.0.0.232 on Windows and OS X and before 11.2.202.508 on Linux, Adobe AIR before 18.0.0.199, Adobe AIR SDK before 18.0.0.199, and Adobe AIR SDK & Compiler before 18.0.0.199 allows…
EPSS: 0.530 (98.0th percentile) — read the EPSS interpretation.
Affected products
- Adobe Air
- Adobe Air_sdk
- Adobe Air_sdk_\&_compiler
- Adobe Flash_player
- Apple Mac_os_x
- Linux Linux_kernel
- Microsoft Windows
- Opensuse Evergreen — versions 11.4
- N/a — versions n/a
References
- psirt@adobe.com (x_refsource_CONFIRM)
- 37852 (exploit, x_refsource_EXPLOIT-DB)
- GLSA-201508-01 (vendor-advisory, x_refsource_GENTOO)
- psirt@adobe.com (x_refsource_CONFIRM)
- psirt@adobe.com (x_refsource_CONFIRM, Patch, Vendor Advisory)
- openSUSE-SU-2015:1781 (vendor-advisory, Third Party Advisory, x_refsource_SUSE)
- 1033235 (vdb-entry, x_refsource_SECTRACK)
- 76288 (Third Party Advisory, VDB Entry, vdb-entry, x_refsource_BID)
- psirt@adobe.com (x_refsource_CONFIRM)
- RHSA-2015:1603 (x_refsource_REDHAT, vendor-advisory)