Vulnerability Details : CVE-2015-3110
Integer overflow in Adobe Photoshop CC before 16.0 (aka 2015.0.0) and Adobe Bridge CC before 6.11 allows attackers to execute arbitrary code via unspecified vectors.
Vulnerability category: OverflowExecute code
Products affected by CVE-2015-3110
- cpe:2.3:a:adobe:bridge:*:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:photoshop_cc:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2015-3110
22.90%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 95 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2015-3110
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
10.0
|
HIGH | AV:N/AC:L/Au:N/C:C/I:C/A:C |
10.0
|
10.0
|
NIST |
CWE ids for CVE-2015-3110
-
Assigned by: nvd@nist.gov (Primary)
References for CVE-2015-3110
-
http://www.securitytracker.com/id/1032658
Adobe Bridge Memory Corruption Flaws Let Remote Users Execute Arbitrary Code - SecurityTracker
-
http://www.securitytracker.com/id/1032659
Adobe Photoshop CC Memory Corruption Flaws Let Remote Users Execute Arbitrary Code - SecurityTracker
-
http://www.securityfocus.com/bid/75243
Adobe Photoshop CC and Bridge CC CVE-2015-3110 Unspecified Integer Overflow Vulnerability
-
https://helpx.adobe.com/security/products/bridge/apsb15-13.html
Adobe Security BulletinVendor Advisory
-
https://helpx.adobe.com/security/products/photoshop/apsb15-12.html
Adobe Security BulletinVendor Advisory
Jump to