Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
10
CVSSv2

CVE-2017-11215

Published: 09/12/2017 Updated: 08/09/2021
CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 890
Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Subscribe to Redhat

Vulnerability Summary

An issue exists in Adobe Flash Player 27.0.0.183 and previous versions versions. This vulnerability is an instance of a use after free vulnerability in the Primetime SDK. The mismatch between an old and a new object can provide an attacker with unintended memory access -- potentially leading to code corruption, control-flow hijack, or an information leak attack. Successful exploitation could lead to arbitrary code execution.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

redhat enterprise linux server 6.0

redhat enterprise linux workstation 6.0

redhat enterprise linux desktop 6.0

adobe flash_player

Vendor Advisories

Red Hat: Critical: flash-plugin security update
Synopsis Critical: flash-plugin security update Type/Severity Security Advisory: Critical Topic An update for flash-plugin is now available for Red Hat Enterprise Linux 6 SupplementaryRed Hat Product Security has rated this update as having a security impact of Critical A Common Vulnerability Scoring Syst ...
Red Hat: CVE-2017-11215
An issue was discovered in Adobe Flash Player 2700183 and earlier versions This vulnerability is an instance of a use after free vulnerability in the Primetime SDK The mismatch between an old and a new object can provide an attacker with unintended memory access -- potentially leading to code corruption, control-flow hijack, or an information ...
Arch Linux Issues:
An use after free vulnerability has been discovered in flashplugin before 2700187 leading to arbitrary code execution when playing a specially crafted SWF file ...

References

CWE-416https://helpx.adobe.com/security/products/flash-player/apsb17-33.htmlhttps://security.gentoo.org/glsa/201711-13https://access.redhat.com/errata/RHSA-2017:3222http://www.securitytracker.com/id/1039778http://www.securityfocus.com/bid/101837https://access.redhat.com/errata/RHSA-2017:3222https://nvd.nist.govhttps://security.archlinux.org/CVE-2017-11215
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-2907hardcodedinjectCVE-2024-20359CVE-2024-2467CVE-2024-4077CVE-2024-22391cameraCVE-2024-20353
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook