CVE-2010-2215

6 documents5 sources
Severity
4.3MEDIUM
EPSS
1.8%
top 17.21%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Adobe Flash PlayerAdobe Adobe AIRAdobe Flash Player FOR Linux
Timeline
PublishedAug 11
Latest updateMay 14

Description

Adobe Flash Player before 9.0.280 and 10.x before 10.1.82.76, and Adobe AIR before 2.0.3, allows attackers to trick a user into (1) selecting a link or (2) completing a dialog, related to a "click-jacking" issue.

CVSS vector

AV:N/AC:M/C:N/I:P/A:NExploitability: 8.6 | Impact: 2.9

Affected Packages2 packages

NVDadobe/flash_player10.1.53.64+46
NVDadobe/adobe_air6 versions+5

🔴Vulnerability Details

2
GHSA
GHSA-5rh8-5qgm-3qcp: Adobe Flash Player before 92022-05-14
CVEList
CVE-2010-2215: Adobe Flash Player before 92010-08-11

📋Vendor Advisories

1
Red Hat
flash-plugin: multiple security flaws (APSB10-16)2010-08-10

💬Community

2
Bugzilla
CVE-2010-0209 CVE-2010-2213 CVE-2010-2214 CVE-2010-2215 CVE-2010-2216 flash-plugin: multiple security flaws (APSB10-16)2010-08-10
Bugzilla
CVE-2010-2597 libtiff: use of uninitialized values crash2010-07-02
CVE-2010-2215 (MEDIUM CVSS 4.3) | Adobe Flash Player before 9.0.280 a | cvebase.io