Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-9exz-cbxm-u3ap
Summary
Multiple vulnerabilities have been found in Adobe Flash Player, the
    worst of which allows remote attackers to execute arbitrary code.
Aliases
0
alias CVE-2015-3105
Fixed_packages
0
url pkg:ebuild/www-plugins/adobe-flash@11.2.202.466
purl pkg:ebuild/www-plugins/adobe-flash@11.2.202.466
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:ebuild/www-plugins/adobe-flash@11.2.202.466
Affected_packages
0
url pkg:rpm/redhat/flash-plugin@11.2.202.466-1?arch=el6_6
purl pkg:rpm/redhat/flash-plugin@11.2.202.466-1?arch=el6_6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4n54-r9e2-syd8
1
vulnerability VCID-582a-u4qz-ckek
2
vulnerability VCID-6cbr-s2ey-jfcb
3
vulnerability VCID-9exz-cbxm-u3ap
4
vulnerability VCID-ds3j-m8vm-vqbx
5
vulnerability VCID-dzn9-3wfw-7yem
6
vulnerability VCID-em98-jbgn-47h8
7
vulnerability VCID-ersd-m7fc-hfbq
8
vulnerability VCID-rvmf-rwu6-73d3
9
vulnerability VCID-x76v-rr7b-5bee
10
vulnerability VCID-y1kc-4ku3-wbbv
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/flash-plugin@11.2.202.466-1%3Farch=el6_6
1
url pkg:rpm/redhat/flash-plugin@11.2.202.466-1?arch=el5
purl pkg:rpm/redhat/flash-plugin@11.2.202.466-1?arch=el5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4n54-r9e2-syd8
1
vulnerability VCID-582a-u4qz-ckek
2
vulnerability VCID-6cbr-s2ey-jfcb
3
vulnerability VCID-9exz-cbxm-u3ap
4
vulnerability VCID-ds3j-m8vm-vqbx
5
vulnerability VCID-dzn9-3wfw-7yem
6
vulnerability VCID-em98-jbgn-47h8
7
vulnerability VCID-ersd-m7fc-hfbq
8
vulnerability VCID-rvmf-rwu6-73d3
9
vulnerability VCID-x76v-rr7b-5bee
10
vulnerability VCID-y1kc-4ku3-wbbv
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/flash-plugin@11.2.202.466-1%3Farch=el5
References
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3105.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3105.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2015-3105
reference_id
reference_type
scores
0
value 0.90264
scoring_system epss
scoring_elements 0.99594
published_at 2026-04-02T12:55:00Z
1
value 0.90264
scoring_system epss
scoring_elements 0.99595
published_at 2026-04-04T12:55:00Z
2
value 0.90264
scoring_system epss
scoring_elements 0.99596
published_at 2026-04-07T12:55:00Z
3
value 0.90264
scoring_system epss
scoring_elements 0.99597
published_at 2026-04-13T12:55:00Z
4
value 0.90264
scoring_system epss
scoring_elements 0.99598
published_at 2026-04-18T12:55:00Z
5
value 0.90264
scoring_system epss
scoring_elements 0.996
published_at 2026-04-24T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2015-3105
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1229879
reference_id 1229879
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1229879
3
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/37448.rb
reference_id CVE-2015-3105;OSVDB-123023
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/37448.rb
4
reference_url https://security.gentoo.org/glsa/201506-01
reference_id GLSA-201506-01
reference_type
scores
url https://security.gentoo.org/glsa/201506-01
5
reference_url https://access.redhat.com/errata/RHSA-2015:1086
reference_id RHSA-2015:1086
reference_type
scores
url https://access.redhat.com/errata/RHSA-2015:1086
Weaknesses
Exploits
0
date_added 2015-06-30
description Adobe Flash Player - Drawing Fill Shader Memory Corruption (Metasploit)
required_action null
due_date null
notes null
known_ransomware_campaign_use true
source_date_published 2015-06-30
exploit_type remote
platform multiple
source_date_updated 2015-06-30
data_source Exploit-DB
source_url
1
date_added null
description 
This module exploits a memory corruption happening when applying a Shader as a drawing fill
          as exploited in the wild on June 2015. This module has been tested successfully on:

          Windows 7 SP1 (32-bit), IE11 and Adobe Flash 17.0.0.188,
          Windows 7 SP1 (32-bit), Firefox 38.0.5 and Adobe Flash 17.0.0.188,
          Windows 8.1, Firefox 38.0.5 and Adobe Flash 17.0.0.188, and
          Linux Mint "Rebecca" (32 bits), Firefox 33.0 and Adobe Flash 11.2.202.460.
required_action null
due_date null
notes 
Reliability:
  - unknown-reliability
Stability:
  - unknown-stability
SideEffects:
  - unknown-side-effects
known_ransomware_campaign_use false
source_date_published 2015-05-12
exploit_type null
platform Linux,Windows
source_date_updated null
data_source Metasploit
source_url https://github.com/rapid7/metasploit-framework/tree/master/modules/exploits/multi/browser/adobe_flash_shader_drawing_fill.rb
Severity_range_scorenull
Exploitability2.0
Weighted_severity0.8
Risk_score1.6
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-9exz-cbxm-u3ap