CVE-2015-3084 — HIGH (10.0)

Q: How severe is CVE-2015-3084?

CVE-2015-3084 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2015-3084?

Check the references section above for vendor advisories and patch information. Affected products include: Adobe Flash Player, Linux Linux Kernel, Apple Mac Os X, Microsoft Windows, Adobe Air.

Vulnerability Description

Adobe Flash Player before 13.0.0.289 and 14.x through 17.x before 17.0.0.188 on Windows and OS X and before 11.2.202.460 on Linux, Adobe AIR before 17.0.0.172, Adobe AIR SDK before 17.0.0.172, and Adobe AIR SDK & Compiler before 17.0.0.172 allow attackers to execute arbitrary code by leveraging an unspecified "type confusion," a different vulnerability than CVE-2015-3077 and CVE-2015-3086.

CVSS Score

10.0

HIGH

AV:N/AC:L/Au:N/C:C/I:C/A:C

Confidentiality

COMPLETE

Integrity

COMPLETE

Availability

COMPLETE

Affected Products

Vendor	Product	Versions
Adobe	Flash Player	<= 11.2.202.475
Linux	Linux Kernel	-
Apple	Mac Os X	-
Microsoft	Windows	-
Adobe	Air	<= 17.0.0.144
Adobe	Air Sdk	<= 17.0.0.144
Adobe	Air Sdk \& Compiler	<= 17.0.0.144

References

FAQ

What is CVE-2015-3084?

CVE-2015-3084 is a vulnerability with a CVSS score of 10.0 (HIGH). Adobe Flash Player before 13.0.0.289 and 14.x through 17.x before 17.0.0.188 on Windows and OS X and before 11.2.202.460 on Linux, Adobe AIR before 17.0.0.172, Adobe AIR SDK before 17.0.0.172, and Ado...

How severe is CVE-2015-3084?

CVE-2015-3084 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2015-3084?

Check the references section above for vendor advisories and patch information. Affected products include: Adobe Flash Player, Linux Linux Kernel, Apple Mac Os X, Microsoft Windows, Adobe Air.