Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2017-11292

Опубликовано: 22 окт. 2017
Источник: ubuntu
Приоритет: medium
EPSS Средний
CVSS2: 6
CVSS3: 8.8

Описание

Adobe Flash Player version 27.0.0.159 and earlier has a flawed bytecode verification procedure, which allows for an untrusted value to be used in the calculation of an array index. This can lead to type confusion, and successful exploitation could lead to arbitrary code execution.

РелизСтатусПримечание
artful

released

1:20171016.1-0ubuntu1
devel

released

1:20171016.1-0ubuntu1
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was released [1:20171016.1-0ubuntu0.14.04.1]]
precise/esm

DNE

trusty

released

1:20171016.1-0ubuntu0.14.04.1
trusty/esm

DNE

trusty was released [1:20171016.1-0ubuntu0.14.04.1]
upstream

needs-triage

xenial

released

1:20171016.1-0ubuntu0.16.04.1
zesty

released

1:20171016.1-0ubuntu0.17.04.1

Показывать по

РелизСтатусПримечание
artful

released

27.0.0.170ubuntu1
devel

released

27.0.0.170ubuntu1
esm-apps/xenial

released

27.0.0.170ubuntu0.16.04.1
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was released [27.0.0.170ubuntu0.14.04.1]]
precise/esm

DNE

trusty

released

27.0.0.170ubuntu0.14.04.1
trusty/esm

DNE

trusty was released [27.0.0.170ubuntu0.14.04.1]
upstream

released

27.0.0.170
xenial

released

27.0.0.170ubuntu0.16.04.1
zesty

released

27.0.0.170ubuntu0.17.04.1

Показывать по

Ссылки на источники

EPSS

Процентиль: 96%
0.21236
Средний

6 Medium

CVSS2

8.8 High

CVSS3

Связанные уязвимости

redhat логотип

CVE-2017-11292

CVSS3: 8.8
redhat
больше 8 лет назад

Adobe Flash Player version 27.0.0.159 and earlier has a flawed bytecode verification procedure, which allows for an untrusted value to be used in the calculation of an array index. This can lead to type confusion, and successful exploitation could lead to arbitrary code execution.

nvd логотип

CVE-2017-11292

CVSS3: 8.8
nvd
больше 8 лет назад

Adobe Flash Player version 27.0.0.159 and earlier has a flawed bytecode verification procedure, which allows for an untrusted value to be used in the calculation of an array index. This can lead to type confusion, and successful exploitation could lead to arbitrary code execution.

github логотип

GHSA-f6x6-gf9m-8cc3

CVSS3: 8.8
github
больше 3 лет назад

Adobe Flash Player version 27.0.0.159 and earlier has a flawed bytecode verification procedure, which allows for an untrusted value to be used in the calculation of an array index. This can lead to type confusion, and successful exploitation could lead to arbitrary code execution.

fstec логотип

BDU:2021-05393

CVSS3: 8.8
fstec
больше 8 лет назад

Уязвимость программной платформы Adobe Flash Player, связанная с неправильным индексированием массива данных, позволяющая нарушителю выполнить произвольный код

msrc логотип

ADV170018

msrc
больше 8 лет назад

October 2017 Adobe Flash Security Update

EPSS

Процентиль: 96%
0.21236
Средний

6 Medium

CVSS2

8.8 High

CVSS3