CVE-2017-3059

Опубликовано: 12 апр. 2017

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 10

CVSS3: 9.8

Описание

Adobe Flash Player versions 25.0.0.127 and earlier have an exploitable use after free vulnerability in the internal script object. Successful exploitation could lead to arbitrary code execution.

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was released [1:20170509.1-0ubuntu0.14.04.1]]
precise	ignored	end of life
precise/esm	DNE	precise was needed
trusty	released	1:20170509.1-0ubuntu0.14.04.1
trusty/esm	DNE	trusty was released [1:20170509.1-0ubuntu0.14.04.1]
upstream	released	25.0.0.148
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE
xenial	released	1:20170509.1-0ubuntu0.16.04.1

Показывать по

Релиз	Статус	Примечание
devel	released	25.0.0.171ubuntu1
esm-apps/xenial	released	25.0.0.171ubuntu0.16.04.1
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was released [25.0.0.171ubuntu0.14.04.1]]
precise	ignored	end of life
precise/esm	DNE	precise was needed
trusty	released	25.0.0.171ubuntu0.14.04.1
trusty/esm	DNE	trusty was released [25.0.0.171ubuntu0.14.04.1]
upstream	released	25.0.0.148
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE

Показывать по

Ссылки на источники

EPSS

Процентиль: 89%

0.04446

Низкий

10 Critical

CVSS2

9.8 Critical

CVSS3

Связанные уязвимости

CVE-2017-3059

CVSS3: 8.8

redhat

почти 9 лет назад

Adobe Flash Player versions 25.0.0.127 and earlier have an exploitable use after free vulnerability in the internal script object. Successful exploitation could lead to arbitrary code execution.

CVE-2017-3059

CVSS3: 9.8

nvd

почти 9 лет назад

Adobe Flash Player versions 25.0.0.127 and earlier have an exploitable use after free vulnerability in the internal script object. Successful exploitation could lead to arbitrary code execution.

GHSA-cxh3-56px-x3x6

CVSS3: 9.8

github

больше 3 лет назад

Adobe Flash Player versions 25.0.0.127 and earlier have an exploitable use after free vulnerability in the internal script object. Successful exploitation could lead to arbitrary code execution.

BDU:2017-00968

fstec

почти 9 лет назад

Уязвимость программной платформы Flash Player, позволяющая нарушителю выполнить произвольный код

SUSE-SU-2017:0990-1

suse-cvrf

почти 9 лет назад

Security update for flash-player

EPSS

Процентиль: 89%

0.04446

Низкий

10 Critical

CVSS2

9.8 Critical

CVSS3

CVE-2017-3059

Описание

Пакет adobe-flashplugin

Пакет flashplugin-nonfree

Ссылки на источники

Связанные уязвимости