What is the severity of CVE-2015-0301?

The severity of CVE-2015-0301 is rated as critical due to potential exploitation leading to remote code execution.

How do I fix CVE-2015-0301?

To fix CVE-2015-0301, it is recommended to update Adobe Flash Player and Adobe AIR to the latest versions available.

What versions of Adobe Flash Player are affected by CVE-2015-0301?

CVE-2015-0301 affects Adobe Flash Player versions prior to 13.0.0.260 and 14.x through 16.x before 16.0.0.257.

Is Adobe AIR impacted by CVE-2015-0301?

Yes, Adobe AIR versions prior to 16.0.0.245 for Windows and OS X are affected by CVE-2015-0301.

Can CVE-2015-0301 affect Linux platforms?

Yes, CVE-2015-0301 impacts Adobe Flash Player version 11.2.202.429 on Linux.

Vulnerability/
CVE-2015-0301

critical

CWE

13/1/2015

6/8/2024

CVE-2015-0301: Input Validation

First published: Tue Jan 13 2015(Updated: )

Adobe Flash Player before 13.0.0.260 and 14.x through 16.x before 16.0.0.257 on Windows and OS X and before 11.2.202.429 on Linux, Adobe AIR before 16.0.0.245 on Windows and OS X and before 16.0.0.272 on Android, Adobe AIR SDK before 16.0.0.272, and Adobe AIR SDK & Compiler before 16.0.0.272 do not properly validate files, which has unspecified impact and attack vectors.

Credit: psirt@adobe.com

Affected Software	Affected Version	How to fix
Adobe AIR SDK	<=15.0.0.356
Adobe AIR Android	<=15.0.0.356
Adobe AIR SDK	<=15.0.0.356
Apple iOS and macOS
Microsoft Windows
Adobe AIR SDK	<=15.0.0.356
Adobe Acrobat Reader	=11.2.202.425
Linux Kernel
Adobe Acrobat Reader	<=13.0.0.259
Adobe Acrobat Reader	=14.0.0.125
Adobe Acrobat Reader	=14.0.0.145
Adobe Acrobat Reader	=14.0.0.176
Adobe Acrobat Reader	=14.0.0.179
Adobe Acrobat Reader	=15.0.0.144
Adobe Acrobat Reader	=15.0.0.152
Adobe Acrobat Reader	=15.0.0.167
Adobe Acrobat Reader	=15.0.0.189
Adobe Acrobat Reader	=15.0.0.223
Adobe Acrobat Reader	=15.0.0.238
Adobe Acrobat Reader	=15.0.0.239
Adobe Acrobat Reader	=15.0.0.246
Adobe Acrobat Reader	=16.0.0.234
Adobe Acrobat Reader	=16.0.0.235

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2015-0301?
The severity of CVE-2015-0301 is rated as critical due to potential exploitation leading to remote code execution.
How do I fix CVE-2015-0301?
To fix CVE-2015-0301, it is recommended to update Adobe Flash Player and Adobe AIR to the latest versions available.
What versions of Adobe Flash Player are affected by CVE-2015-0301?
CVE-2015-0301 affects Adobe Flash Player versions prior to 13.0.0.260 and 14.x through 16.x before 16.0.0.257.
Is Adobe AIR impacted by CVE-2015-0301?
Yes, Adobe AIR versions prior to 16.0.0.245 for Windows and OS X are affected by CVE-2015-0301.
Can CVE-2015-0301 affect Linux platforms?
Yes, CVE-2015-0301 impacts Adobe Flash Player version 11.2.202.429 on Linux.

agent/type
agent/references
collector/mitre-cve
source/MITRE
agent/severity
agent/last-modified-date
agent/weakness
agent/author
agent/description
agent/event
agent/first-publish-date
agent/source
agent/softwarecombine
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/adobe
canonical/adobe air sdk
version/adobe air sdk/15.0.0.356
canonical/adobe air android
version/adobe air android/15.0.0.356
vendor/apple
canonical/apple ios and macos
vendor/microsoft
canonical/microsoft windows
canonical/adobe acrobat reader
version/adobe acrobat reader/11.2.202.425
vendor/linux
canonical/linux kernel
version/adobe acrobat reader/13.0.0.259
version/adobe acrobat reader/14.0.0.125
version/adobe acrobat reader/14.0.0.145
version/adobe acrobat reader/14.0.0.176
version/adobe acrobat reader/14.0.0.179
version/adobe acrobat reader/15.0.0.144
version/adobe acrobat reader/15.0.0.152
version/adobe acrobat reader/15.0.0.167
version/adobe acrobat reader/15.0.0.189
version/adobe acrobat reader/15.0.0.223
version/adobe acrobat reader/15.0.0.238
version/adobe acrobat reader/15.0.0.239
version/adobe acrobat reader/15.0.0.246
version/adobe acrobat reader/16.0.0.234
version/adobe acrobat reader/16.0.0.235