CVE-2015-0310

HIGH KEV RANSOMWARE

Adobe Flash Player < 11.2.202.438 - Memory Address Exposure via ASLR Bypass

Title source: llm
STIX 2.1

Exploitation Summary

CVE-2015-0310 is actively exploited and listed in the CISA Known Exploited Vulnerabilities (KEV) catalog, added May 25, 2022, with confirmed use in ransomware campaigns.

Description

Adobe Flash Player before 13.0.0.262 and 14.x through 16.x before 16.0.0.287 on Windows and OS X and before 11.2.202.438 on Linux does not properly restrict discovery of memory addresses, which allows attackers to bypass the ASLR protection mechanism on Windows, and have an unspecified impact on other platforms, via unknown vectors, as exploited in the wild in January 2015.

References (10)

Core 10
Core References
Third Party Advisory vendor-advisory x_refsource_gentoo
http://security.gentoo.org/glsa/glsa-201502-02.xml
Broken Link, Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/72261
Broken Link third-party-advisory x_refsource_secunia
http://secunia.com/advisories/62660
Broken Link third-party-advisory x_refsource_secunia
http://secunia.com/advisories/62740
Broken Link, Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1031609
Broken Link third-party-advisory x_refsource_secunia
http://secunia.com/advisories/62452
Broken Link third-party-advisory x_refsource_secunia
http://secunia.com/advisories/62601

Scores

CVSS v3 7.8
EPSS 0.1093
EPSS Percentile 93.6%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation active
Automatable no
Technical Impact total

Details

CISA KEV 2022-05-25
VulnCheck KEV 2015-01-16
InTheWild.io 2015-01-16
ENISA EUVD EUVD-2015-0323
Ransomware Use Confirmed
CWE
CWE-200
Status published
Products (1)
adobe/flash_player < 11.2.202.438
Published Jan 23, 2015
KEV Added May 25, 2022
Tracked Since Feb 18, 2026