CVE-2015-5119 — Adobe Flash Player Use-After-Free Vulnerability
2022-03-03 • CISA Known Exploited Vulnerability
[event] A use-after-free vulnerability exists within the ActionScript 3 ByteArray class in Adobe Flash Player that allows an attacker to perform remote code execution.
> AFFECTED SOFTWARE
| Field | Value |
|---|---|
| Vendor | Adobe |
| Product | Flash Player |
| CWE | CWE-119 |
| CVE ID | CVE-2015-5119 |
| Date Added | 2022-03-03 |
| Due Date | 2022-03-24 |
| Ransomware Campaign | Unknown |
> MITIGATION
The impacted product is end-of-life and should be disconnected if still in use.
Due Date: 2022-03-24