Home

CVE-2015-0305

Description

Adobe Flash Player before 13.0.0.260 and 14.x through 16.x before 16.0.0.257 on Windows and OS X and before 11.2.202.429 on Linux, Adobe AIR before 16.0.0.245 on Windows and OS X and before 16.0.0.272 on Android, Adobe AIR SDK before 16.0.0.272, and Adobe AIR SDK & Compiler before 16.0.0.272 allow attackers to execute arbitrary code by leveraging an unspecified type confusion.

Risk Information

Base Score
9.8
MODERATE
Vector
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
2.846

Associated Vulnerability

VulnerabilityOS Platform
Upgrade Adobe Air 15.0.0.356 to latest versionWindows
Upgrade Adobe flash player 16.0.0.235 to latest versionWindows
Multiple vulnerabilities affected in Adobe AIR 15.0.0.356Windows
Multiple vulnerabilities affected in Adobe Flash Player Plugin 16.0.0.235Windows
Multiple vulnerabilities affected in Adobe Flash Player PPAPI 16.0.0.235Windows
Multiple Vulnerabilities are affected in Adobe AIR 15.0.0.356Windows
Multiple Vulnerabilities are affected in Adobe AIR For Mac 14.0.0.137Mac
Multiple Vulnerabilities are affected in Adobe AIR For Mac 15.0.0.356Mac

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-601945Update for Adobe AIR For Mac (32.0.0.125) (Deployment-Only)
PATCH-601945Update for Adobe AIR For Mac (32.0.0.125) (Deployment-Only)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234