CVE-2015-3043
Summary
| CVE | CVE-2015-3043 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2015-04-14 22:59:00 UTC |
| Updated | 2018-10-30 16:27:00 UTC |
| Description | Adobe Flash Player before 13.0.0.281 and 14.x through 17.x before 17.0.0.169 on Windows and OS X and before 11.2.202.457 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, as exploited in the wild in April 2015, a different vulnerability than CVE-2015-0347, CVE-2015-0350, CVE-2015-0352, CVE-2015-0353, CVE-2015-0354, CVE-2015-0355, CVE-2015-0360, CVE-2015-3038, CVE-2015-3041, and CVE-2015-3042. |
Risk And Classification
EPSS: 0.874240000 probability, percentile 0.994500000 (date 2026-04-02)
CISA KEV: Listed on 2022-03-03; due 2022-03-24; ransomware use Unknown
Problem Types: NVD-CWE-noinfo
CISA Known Exploited Vulnerability
| Vendor | Adobe |
|---|---|
| Product | Flash Player |
| Name | Adobe Flash Player Memory Corruption Vulnerability |
| Required Action | The impacted product is end-of-life and should be disconnected if still in use. |
| Notes | https://nvd.nist.gov/vuln/detail/CVE-2015-3043 |
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Adobe | Flash Player | 14.0.0.125 | All | All | All |
| Application | Adobe | Flash Player | 14.0.0.145 | All | All | All |
| Application | Adobe | Flash Player | 14.0.0.176 | All | All | All |
| Application | Adobe | Flash Player | 14.0.0.179 | All | All | All |
| Application | Adobe | Flash Player | 15.0.0.152 | All | All | All |
| Application | Adobe | Flash Player | 15.0.0.167 | All | All | All |
| Application | Adobe | Flash Player | 15.0.0.189 | All | All | All |
| Application | Adobe | Flash Player | 15.0.0.223 | All | All | All |
| Application | Adobe | Flash Player | 15.0.0.239 | All | All | All |
| Application | Adobe | Flash Player | 15.0.0.246 | All | All | All |
| Application | Adobe | Flash Player | 16.0.0.235 | All | All | All |
| Application | Adobe | Flash Player | 16.0.0.257 | All | All | All |
| Application | Adobe | Flash Player | 16.0.0.287 | All | All | All |
| Application | Adobe | Flash Player | 16.0.0.296 | All | All | All |
| Application | Adobe | Flash Player | 17.0.0.134 | All | All | All |
| Application | Adobe | Flash Player | 14.0.0.125 | All | All | All |
| Application | Adobe | Flash Player | 14.0.0.145 | All | All | All |
| Application | Adobe | Flash Player | 14.0.0.176 | All | All | All |
| Application | Adobe | Flash Player | 14.0.0.179 | All | All | All |
| Application | Adobe | Flash Player | 15.0.0.152 | All | All | All |
| Application | Adobe | Flash Player | 15.0.0.167 | All | All | All |
| Application | Adobe | Flash Player | 15.0.0.189 | All | All | All |
| Application | Adobe | Flash Player | 15.0.0.223 | All | All | All |
| Application | Adobe | Flash Player | 15.0.0.239 | All | All | All |
| Application | Adobe | Flash Player | 15.0.0.246 | All | All | All |
| Application | Adobe | Flash Player | 16.0.0.235 | All | All | All |
| Application | Adobe | Flash Player | 16.0.0.257 | All | All | All |
| Application | Adobe | Flash Player | 16.0.0.287 | All | All | All |
| Application | Adobe | Flash Player | 16.0.0.296 | All | All | All |
| Application | Adobe | Flash Player | 17.0.0.134 | All | All | All |
| Application | Adobe | Flash Player | All | All | All | All |
| Application | Adobe | Flash Player | All | All | All | All |
| Operating System | Apple | Mac Os X | - | All | All | All |
| Operating System | Apple | Mac Os X | - | All | All | All |
| Operating System | Linux | Linux Kernel | - | All | All | All |
| Operating System | Linux | Linux Kernel | - | All | All | All |
| Operating System | Microsoft | Windows | - | All | All | All |
| Operating System | Microsoft | Windows | - | All | All | All |
| Operating System | Novell | Suse Linux Enterprise Desktop | 11.0 | sp3 | All | All |
| Operating System | Novell | Suse Linux Enterprise Desktop | 12.0 | All | All | All |
| Operating System | Novell | Suse Linux Enterprise Desktop | 11.0 | sp3 | All | All |
| Operating System | Novell | Suse Linux Enterprise Desktop | 12.0 | All | All | All |
| Operating System | Novell | Suse Linux Enterprise Workstation Extension | 12.0 | All | All | All |
| Operating System | Novell | Suse Linux Enterprise Workstation Extension | 12.0 | All | All | All |
| Operating System | Opensuse | Opensuse | 13.1 | All | All | All |
| Operating System | Opensuse | Opensuse | 13.2 | All | All | All |
| Operating System | Opensuse | Opensuse | 13.1 | All | All | All |
| Operating System | Opensuse | Opensuse | 13.2 | All | All | All |
| Operating System | Redhat | Enterprise Linux Desktop Supplementary | 5.0 | client | All | All |
| Operating System | Redhat | Enterprise Linux Desktop Supplementary | 6.0 | All | All | All |
| Operating System | Redhat | Enterprise Linux Desktop Supplementary | 5.0 | client | All | All |
| Operating System | Redhat | Enterprise Linux Desktop Supplementary | 6.0 | All | All | All |
| Operating System | Redhat | Enterprise Linux Server Supplementary | 6.0 | All | All | All |
| Operating System | Redhat | Enterprise Linux Server Supplementary | 6.0 | All | All | All |
| Operating System | Redhat | Enterprise Linux Server Supplementary Eus | 6.6.z | All | All | All |
| Operating System | Redhat | Enterprise Linux Server Supplementary Eus | 6.6.z | All | All | All |
| Operating System | Redhat | Enterprise Linux Supplementary | 5.0 | server | All | All |
| Operating System | Redhat | Enterprise Linux Supplementary | 5.0 | server | All | All |
| Operating System | Redhat | Enterprise Linux Workstation Supplementary | 6.0 | All | All | All |
| Operating System | Redhat | Enterprise Linux Workstation Supplementary | 6.0 | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Adobe Flash Player Nellymoser Audio Decoding Buffer Overflow - Exploits Database | EXPLOIT-DB | www.exploit-db.com | |
| Red Hat Customer Portal | REDHAT | rhn.redhat.com | Third Party Advisory |
| Adobe Flash Player Multiple Unspecified Memory Corruption Vulnerabilities | BID | www.securityfocus.com | |
| [security-announce] openSUSE-SU-2015:0725-1: important: Security update | SUSE | lists.opensuse.org | |
| [security-announce] openSUSE-SU-2015:0718-1: important: Security update | SUSE | lists.opensuse.org | Third Party Advisory |
| Adobe Flash Player: Multiple vulnerabilities (GLSA 201504-07) — Gentoo security | GENTOO | security.gentoo.org | |
| [security-announce] SUSE-SU-2015:0723-1: important: Security update for | SUSE | lists.opensuse.org | Third Party Advisory |
| Adobe Security Bulletin | CONFIRM | helpx.adobe.com | Patch, Vendor Advisory |
| [security-announce] SUSE-SU-2015:0722-1: important: Security update for | SUSE | lists.opensuse.org | Third Party Advisory |
| Adobe Flash Player Multiple Bugs Let Remote Users Bypass ASLR, Obtain Potentially Sensitive Information, and Execute Arbitrary Code - SecurityTracker | SECTRACK | www.securitytracker.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
| CISA Known Exploited Vulnerabilities catalog | CISA | www.cisa.gov | kev |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.