Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5
CVSSv2

CVE-2015-0340

Published: 13/03/2015 Updated: 01/07/2017
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
VMScore: 445
Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N
Subscribe to Flash Player

Vulnerability Summary

Adobe Flash Player prior to 13.0.0.277 and 14.x up to and including 17.x prior to 17.0.0.134 on Windows and OS X and prior to 11.2.202.451 on Linux allows remote malicious users to bypass intended file-upload restrictions via unspecified vectors.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

adobe flash_player

adobe flash_player 14.0.0.125

adobe flash_player 14.0.0.145

adobe flash_player 16.0.0.305

adobe flash_player 16.0.0.296

adobe flash_player 16.0.0.287

adobe flash_player 15.0.0.223

adobe flash_player 15.0.0.239

adobe flash_player 15.0.0.152

adobe flash_player 15.0.0.167

adobe flash_player 14.0.0.176

adobe flash_player 15.0.0.189

adobe flash_player 16.0.0.257

adobe flash_player 14.0.0.179

adobe flash_player 15.0.0.246

adobe flash_player 16.0.0.235

Vendor Advisories

Red Hat: CVE-2015-0340
Adobe Flash Player before 1300277 and 14x through 17x before 1700134 on Windows and OS X and before 112202451 on Linux allows remote attackers to bypass intended file-upload restrictions via unspecified vectors ...

References

NVD-CWE-Otherhttps://helpx.adobe.com/security/products/flash-player/apsb15-05.htmlhttp://www.securitytracker.com/id/1031922http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00017.htmlhttp://lists.opensuse.org/opensuse-security-announce/2015-03/msg00014.htmlhttp://lists.opensuse.org/opensuse-security-announce/2015-03/msg00016.htmlhttp://lists.opensuse.org/opensuse-security-announce/2015-03/msg00015.htmlhttp://rhn.redhat.com/errata/RHSA-2015-0697.htmlhttps://security.gentoo.org/glsa/201503-09https://nvd.nist.govhttps://access.redhat.com/security/cve/cve-2015-0340
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-38298CVE-2024-20356CVE-2023-21987CVE-2024-33217bypassCVE-2024-31804CVE-2024-32660unauthorizedSSRF
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook