CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2015-4428

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0600%
EPSS Percentile14.84th
Published2015年7月9日
Last Modified2026年5月6日

Vulnerability Description

Use-after-free vulnerability in Adobe Flash Player before 13.0.0.302 and 14.x through 18.x before 18.0.0.203 on Windows and OS X and before 11.2.202.481 on Linux, Adobe AIR before 18.0.0.180, Adobe AIR SDK before 18.0.0.180, and Adobe AIR SDK & Compiler before 18.0.0.180 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2015-3118, CVE-2015-3124, CVE-2015-3127, CVE-2015-3128, CVE-2015-3129, CVE-2015-3131, CVE-2015-3132, CVE-2015-3136, CVE-2015-3137, CVE-2015-4430, and CVE-2015-5117.

Affected Platforms (CPE)

📦
Adobe

Flash Player

<= 13.0.0.289
📦
Adobe

Flash Player

= 14.0.0.125
📦
Adobe

Flash Player

= 14.0.0.145
📦
Adobe

Flash Player

= 14.0.0.176
📦
Adobe

Flash Player

= 14.0.0.179
📦
Adobe

Flash Player

= 15.0.0.152
📦
Adobe

Flash Player

= 15.0.0.167
📦
Adobe

Flash Player

= 15.0.0.189
📦
Adobe

Flash Player

= 15.0.0.223
📦
Adobe

Flash Player

= 15.0.0.239
📦
Adobe

Flash Player

= 15.0.0.246
📦
Adobe

Flash Player

= 16.0.0.235
📦
Adobe

Flash Player

= 16.0.0.257
📦
Adobe

Flash Player

= 16.0.0.287
📦
Adobe

Flash Player

= 16.0.0.296
📦
Adobe

Flash Player

= 17.0.0.134
📦
Adobe

Flash Player

= 17.0.0.169
📦
Adobe

Flash Player

= 17.0.0.188
📦
Adobe

Flash Player

= 17.0.0.190
📦
Adobe

Flash Player

= 18.0.0.160
📦
Adobe

Flash Player

= 18.0.0.194
📦
Adobe

Flash Player

<= 11.2.202.468
📦
Adobe

Air

<= 18.0.0.144
📦
Adobe

Air Sdk

<= 18.0.0.144
📦
Adobe

Air Sdk \& Compiler

<= 18.0.0.144

References & Advisories

🔗 http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00017.html
🔗 http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00018.html
🔗 http://rhn.redhat.com/errata/RHSA-2015-1214.html
🔗 http://www.securityfocus.com/bid/75590
🔗 http://www.securitytracker.com/id/1032810
🔗 https://helpx.adobe.com/security/products/flash-player/apsb15-16.html
🔗 https://security.gentoo.org/glsa/201507-13
🔗 http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00017.html

相關漏洞威脅

CVE-2012-525410.0

Buffer overflow in Adobe Flash Player before 10.3.183.29 and 11.x before 11.4.402.287 on Windows and Mac OS X, before 10.3.183.29 ...

CVE-2012-525510.0

Buffer overflow in Adobe Flash Player before 10.3.183.29 and 11.x before 11.4.402.287 on Windows and Mac OS X, before 10.3.183.29 ...

CVE-2013-136810.0

Buffer overflow in Adobe Flash Player before 10.3.183.63 and 11.x before 11.6.602.168 on Windows, before 10.3.183.61 and 11.x befo...

CVE-2012-525610.0

Adobe Flash Player before 10.3.183.29 and 11.x before 11.4.402.287 on Windows and Mac OS X, before 10.3.183.29 and 11.x before 11....