CVE-2015-3113: Adobe Flash Player Heap-Based Buffer Overflow

Adobe Flash Player Heap-Based Buffer Overflow Vulnerability. Heap-based buffer overflow vulnerability in Adobe Flash Player allows remote attackers to execute code.

• CISA KEV-listed (remediation due 2022-05-04)
• EPSS 92.4% (99.7% percentile)

Related briefings

• FireEye Exposes APT3's Operation Clandestine Wolf Exploiting Adobe Flash Zero-Day CVE-2015-3113 2026-02-16

Browse the CVE database

Read the full analysis on IntelFusions