Critical severity9.8NVD Advisory· Published Jun 20, 2017· Updated Jun 17, 2026
CVE-2017-3075
CVE-2017-3075
Description
Adobe Flash Player versions 25.0.0.171 and earlier have an exploitable use after free vulnerability when manipulating the ActionsScript 2 XML class. Successful exploitation could lead to arbitrary code execution.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
5cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*range: <=25.0.0.171
- cpe:2.3:a:adobe:flash_player:*:*:*:*:*:chrome:*:*range: <=25.0.0.171
- cpe:2.3:a:adobe:flash_player:*:*:*:*:*:edge:*:*range: <=25.0.0.171
- cpe:2.3:a:adobe:flash_player:*:*:*:*:*:internet_explorer:*:*range: <=25.0.0.171
- (no CPE)range: <=25.0.0.171
Patches
Vulnerability mechanics
References
5- www.securityfocus.com/bid/99023nvdThird Party AdvisoryVDB Entry
- helpx.adobe.com/security/products/flash-player/apsb17-17.htmlnvdVendor Advisory
- www.securitytracker.com/id/1038655nvd
- access.redhat.com/errata/RHSA-2017:1439nvd
- security.gentoo.org/glsa/201707-15nvd
News mentions
0No linked articles in our index yet.