CVE-2015-5123 — Adobe Flash Player Use-After-Free Vulnerability
2022-04-13 • CISA Known Exploited Vulnerability
[event] Use-after-free vulnerability in the BitmapData class in the ActionScript 3 (AS3) implementation in Adobe Flash Player allows remote attackers to execute code or cause a denial-of-service (DoS).
> AFFECTED SOFTWARE
| Field | Value |
|---|---|
| Vendor | Adobe |
| Product | Flash Player |
| CWE | CWE-416 |
| CVE ID | CVE-2015-5123 |
| Date Added | 2022-04-13 |
| Due Date | 2022-05-04 |
| Ransomware Campaign | Unknown |
> MITIGATION
The impacted product is end-of-life and should be disconnected if still in use.
Due Date: 2022-05-04