9.3

CVE-2015-7659

Adobe Flash Player before 18.0.0.261 and 19.x before 19.0.0.245 on Windows and OS X and before 11.2.202.548 on Linux, Adobe AIR before 19.0.0.241, Adobe AIR SDK before 19.0.0.241, and Adobe AIR SDK & Compiler before 19.0.0.241 allow attackers to execute arbitrary code by leveraging an unspecified "type confusion" in the NetConnection object implementation.

Data is provided by the National Vulnerability Database (NVD)
AdobeFlash Player Version <= 11.2.202.540
   LinuxLinux Kernel Version-
AdobeAir Version <= 19.0.0.213
   ApplemacOS X Version-
   MicrosoftWindows Version-
AdobeFlash Player Version <= 18.0.0.255
   ApplemacOS X Version-
   MicrosoftWindows Version-
AdobeFlash Player Version19.0.0.185
   ApplemacOS X Version-
   MicrosoftWindows Version-
AdobeFlash Player Version19.0.0.207
   ApplemacOS X Version-
   MicrosoftWindows Version-
AdobeFlash Player Version19.0.0.226
   ApplemacOS X Version-
   MicrosoftWindows Version-
AdobeAir Version <= 19.0.0.190
   GoogleAndroid
AdobeAir Sdk Version <= 19.0.0.213
   AppleiPhone OS
   ApplemacOS X Version-
   GoogleAndroid
   MicrosoftWindows Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 6.18% 0.904
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 9.3 8.6 10
AV:N/AC:M/Au:N/C:C/I:C/A:C