CVE-2015-5122
Adobe Flash Player Use-After-Free Vulnerability
CVSS
—
No CVSS
EPSS
93.7%
p100
KEV
YES
Apr 13, 2022
Exploit Today
80
0-100
Published: — · Last modified: —
93.7%EPSS · 30 days93.7%
2026-06-302026-07-16
Product
Adobe / Flash Player
Vulnerability
Adobe Flash Player Use-After-Free Vulnerability
Added to KEV
Apr 13, 2022
Remediate by
May 4, 2022
Known ransomware use
No
Summary description
Use-after-free vulnerability in the DisplayObject class in the ActionScript 3 (AS3) implementation in Adobe Flash Player allows remote attackers to execute code or cause a denial-of-service (DoS).
Required action
The impacted product is end-of-life and should be disconnected if still in use.
Notes
https://nvd.nist.gov/vuln/detail/CVE-2015-5122
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2015-3113—100.0%
KEV—80Adobe Flash Player Heap-Based Buffer Overflow Vulnerability—CVE-2014-0497—100.0%
KEV—80Adobe Flash Player Integer Underflow Vulnerablity—CVE-2015-5119—99.9%
KEV—80Adobe Flash Player Use-After-Free Vulnerability—CVE-2011-0611—99.9%
KEV—80Adobe Flash Player Remote Code Execution Vulnerability—CVE-2015-0313—99.9%
KEV—80Adobe Flash Player Use-After-Free Vulnerability—CVE-2016-4117—99.8%
KEV—80Adobe Flash Player Arbitrary Code Execution Vulnerability—