CVE-2017-11305

Published: Dic 13, 2017 Last Modified: Apr 20, 2025 EU-VD ID: EUVD-2017-2939 Aliases: GSD-2017-11305
ExploitDB:
Other exploit source:
Google Dorks:
MEDIUM 6,5
Source: [email protected]
Attack Vector: network
Attack Complexity: low
Privileges Required: none
User Interaction: required
Scope: unchanged
Confidentiality: none
Integrity: high
Availability: none
MEDIUM 4,3
Source: [email protected]
Access Vector: network
Access Complexity: medium
Authentication: none
Confidentiality: none
Integrity: partial
Availability: none

Description

AI Translation Available

A regression affecting Adobe Flash Player version 27.0.0.187 (and earlier versions) causes the unintended reset of the global settings preference file when a user clears browser data.

EPSS (Exploit Prediction Scoring System)

Trend Analysis

EPSS (Exploit Prediction Scoring System)

Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.

EPSS Score
0,0247
Percentile
0,8th
Updated

EPSS Score Trend (Last 91 Days)

Application

Flash Player by Adobe

Product Information
Vendor Adobe
Product Flash Player
Version Range Affected
To 27.0.0.187 (inclusive)
cpe:2.3:a:adobe:flash_player:*:*:*:*:*:chrome:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Flash Player Desktop Runtime by Adobe

Product Information
Vendor Adobe
Product Flash Player Desktop Runtime
Version Range Affected
To 27.0.0.187 (inclusive)
cpe:2.3:a:adobe:flash_player_desktop_runtime:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Enterprise Linux Server by Redhat

Product Information
Vendor Redhat
Product Enterprise Linux Server
Version 6.0
cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Flash Player by Adobe

Product Information
Vendor Adobe
Product Flash Player
Version Range Affected
To 27.0.0.187 (inclusive)
cpe:2.3:a:adobe:flash_player:*:*:*:*:*:internet_explorer:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Flash Player by Adobe

Product Information
Vendor Adobe
Product Flash Player
Version Range Affected
To 27.0.0.187 (inclusive)
cpe:2.3:a:adobe:flash_player:*:*:*:*:*:edge:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Enterprise Linux Workstation by Redhat

Product Information
Vendor Redhat
Product Enterprise Linux Workstation
Version 6.0
cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Enterprise Linux Desktop by Redhat

Product Information
Vendor Redhat
Product Enterprise Linux Desktop
Version 6.0
cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
https://access.redhat.com/errata/RHSA-2018:0081
Third Party Advisory
https://access.redhat.com/errata/RHSA-2018:0081
https://helpx.adobe.com/security/products/flash-player/apsb…
Patch Vendor Advisory
https://helpx.adobe.com/security/products/flash-player/apsb17-42.html
http://www.securityfocus.com/bid/102139
Broken Link Third Party Advisory VDB Entry
http://www.securityfocus.com/bid/102139
http://www.securitytracker.com/id/1039986
Broken Link Third Party Advisory VDB Entry
http://www.securitytracker.com/id/1039986
https://access.redhat.com/errata/RHSA-2018:0081
Third Party Advisory
https://access.redhat.com/errata/RHSA-2018:0081
https://helpx.adobe.com/security/products/flash-player/apsb…
Patch Vendor Advisory
https://helpx.adobe.com/security/products/flash-player/apsb17-42.html
http://www.securityfocus.com/bid/102139
Broken Link Third Party Advisory VDB Entry
http://www.securityfocus.com/bid/102139
http://www.securitytracker.com/id/1039986
Broken Link Third Party Advisory VDB Entry
http://www.securitytracker.com/id/1039986