Vulnerability Change Records for CVE-2015-5127

Change History

CVE Modified by Adobe Systems Incorporated 1/04/2018 9:30:12 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://rhn.redhat.com/errata/RHSA-2015-1603.html [No Types Assigned]

CVE Modified by Adobe Systems Incorporated 12/21/2016 9:59:58 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://security.gentoo.org/glsa/201508-01 [No Types Assigned]

CVE Modified by Adobe Systems Incorporated 12/19/2016 9:59:06 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05356388 [No Types Assigned]

CVE Modified by Adobe Systems Incorporated 9/16/2017 9:29:04 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://www.exploit-db.com/exploits/37861/ [No Types Assigned]

CVE Modified by Adobe Systems Incorporated 11/28/2016 2:32:09 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://www.securityfocus.com/bid/76288 [No Types Assigned]

CVE Modified by Adobe Systems Incorporated 12/07/2016 10:9:44 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://lists.opensuse.org/opensuse-security-announce/2015-10/msg00018.html [No Types Assigned]

Modified Analysis 12/08/2016 3:47:25 PM

Action Type Old Value New Value
Changed CPE Configuration
Configuration 1
     OR
          *cpe:2.3:a:adobe:air_sdk_\&_compiler:18.0.0.180:*:*:*:*:*:*:* (and previous)
          *cpe:2.3:a:adobe:air_sdk:18.0.0.180:*:*:*:*:*:*:* (and previous)
          *cpe:2.3:a:adobe:air:18.0.0.180:*:*:*:*:*:*:* (and previous)
Configuration 2
     AND
          OR
               *cpe:2.3:a:adobe:flash_player:18.0.0.209:*:*:*:*:*:*:* (and previous)
          OR
               cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
               cpe:2.3:o:apple:mac_os_x:-:*:*:*:*:*:*:*
Configuration 3
     AND
          OR
               *cpe:2.3:a:adobe:flash_player:11.2.202.491:*:*:*:*:*:*:* (and previous)
          OR
               cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
Configuration 1
     AND
          OR
               *cpe:2.3:a:adobe:flash_player:18.0.0.209:*:*:*:*:*:*:* (and previous)
          OR
               cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
               cpe:2.3:o:apple:mac_os_x:-:*:*:*:*:*:*:*
Configuration 2
     AND
          OR
               *cpe:2.3:a:adobe:flash_player:11.2.202.491:*:*:*:*:*:*:* (and previous)
          OR
               cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
Configuration 3
     OR
          *cpe:2.3:o:opensuse:evergreen:11.4:*:*:*:*:*:*:*
Configuration 4
     OR
          *cpe:2.3:a:adobe:air_sdk_\&_compiler:18.0.0.180:*:*:*:*:*:*:* (and previous)
          *cpe:2.3:a:adobe:air_sdk:18.0.0.180:*:*:*:*:*:*:* (and previous)
          *cpe:2.3:a:adobe:air:18.0.0.180:*:*:*:*:*:*:* (and previous)
Changed Reference Type
http://lists.opensuse.org/opensuse-security-announce/2015-10/msg00018.html No Types Assigned
http://lists.opensuse.org/opensuse-security-announce/2015-10/msg00018.html Third Party Advisory
Changed Reference Type
http://www.securityfocus.com/bid/76288 No Types Assigned
http://www.securityfocus.com/bid/76288 Third Party Advisory, VDB Entry

Initial CVE Analysis 8/14/2015 10:27:32 AM

Action Type Old Value New Value

Modified Analysis 8/14/2015 11:14:55 AM

Action Type Old Value New Value
Added CPE Configuration

								
							
							
						
Configuration 1
     OR
          *cpe:2.3:a:adobe:air_sdk_\&_compiler:18.0.0.180:*:*:*:*:*:*:* (and previous)
          *cpe:2.3:a:adobe:air_sdk:18.0.0.180:*:*:*:*:*:*:* (and previous)
          *cpe:2.3:a:adobe:air:18.0.0.180:*:*:*:*:*:*:* (and previous)
Configuration 2
     AND
          OR
               *cpe:2.3:a:adobe:flash_player:18.0.0.209:*:*:*:*:*:*:* (and previous)
          OR
               cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
               cpe:2.3:o:apple:mac_os_x:-:*:*:*:*:*:*:*
Configuration 3
     AND
          OR
               *cpe:2.3:a:adobe:flash_player:11.2.202.491:*:*:*:*:*:*:* (and previous)
          OR
               cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
Added CVSS V2

								
							
							
						
(AV:N/AC:L/Au:N/C:C/I:C/A:C)
Added CWE

								
							
							
						
NVD-CWE-Other
Added Evaluator Description

								
							
							
						
<a href="http://cwe.mitre.org/data/definitions/416.html">CWE-416: Use After Free</a>
Changed Reference Type
https://helpx.adobe.com/security/products/flash-player/apsb15-19.html No Types Assigned
https://helpx.adobe.com/security/products/flash-player/apsb15-19.html Advisory, Patch

CVE Modified by Adobe Systems Incorporated 2/16/2017 9:59:00 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05390722 [No Types Assigned]

CVE Modified by Adobe Systems Incorporated 9/20/2017 9:29:10 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://www.securitytracker.com/id/1033235 [No Types Assigned]

CVE Modified by Adobe Systems Incorporated 2/07/2017 9:59:00 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05385680 [No Types Assigned]