CVE-2017-11282

Опубликовано: 01 дек. 2017

Источник: ubuntu

Приоритет: critical

EPSS Средний

CVSS2: 7.5

CVSS3: 9.8

Описание

Adobe Flash Player has an exploitable memory corruption vulnerability in the MP4 atom parser. Successful exploitation could lead to arbitrary code execution. This affects 26.0.0.151 and earlier.

Релиз	Статус	Примечание
devel	released	27.0.0.130ubuntu1
esm-apps/xenial	released	27.0.0.130ubuntu0.16.04.1
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was released [27.0.0.130ubuntu0.14.04.1]]
precise/esm	DNE
trusty	released	27.0.0.130ubuntu0.14.04.1
trusty/esm	DNE	trusty was released [27.0.0.130ubuntu0.14.04.1]
upstream	released	27.0.0.130
vivid/ubuntu-core	DNE
xenial	released	27.0.0.130ubuntu0.16.04.1
zesty	released	27.0.0.130ubuntu0.17.04.1

Показывать по

Ссылки на источники

EPSS

Процентиль: 95%

0.20687

Средний

7.5 High

CVSS2

9.8 Critical

CVSS3

Связанные уязвимости

CVE-2017-11282

CVSS3: 8.8

redhat

больше 8 лет назад

Adobe Flash Player has an exploitable memory corruption vulnerability in the MP4 atom parser. Successful exploitation could lead to arbitrary code execution. This affects 26.0.0.151 and earlier.

CVE-2017-11282

CVSS3: 9.8

nvd

около 8 лет назад

Adobe Flash Player has an exploitable memory corruption vulnerability in the MP4 atom parser. Successful exploitation could lead to arbitrary code execution. This affects 26.0.0.151 and earlier.

GHSA-vq94-9f8p-793h

CVSS3: 9.8

github

больше 3 лет назад

Adobe Flash Player has an exploitable memory corruption vulnerability in the MP4 atom parser. Successful exploitation could lead to arbitrary code execution. This affects 26.0.0.151 and earlier.

ADV170013

msrc

больше 8 лет назад

September 2017 Flash Security Update

EPSS

Процентиль: 95%

0.20687

Средний

7.5 High

CVSS2

9.8 Critical

CVSS3

CVE-2017-11282

Описание

Пакет flashplugin-nonfree

Ссылки на источники

Связанные уязвимости