Adobe Flash Player contains a heap-based buffer overflow that allows remote code execution, exploited as a zero-day in June 2015 by APT3 (a Chinese cyber espionage group) in phishing campaigns targeting aerospace and defense organizations.
Buffer Overflow
Memory Corruption
RCE
Adobe
Microsoft
NVD
GitHub
Exploit-DB
VulDB
CVSS 3.1
9.8
EPSS
92.4%
Threat
9.7