Previous issue: CVE-2015-5119 that affected Adobe Flash Player versions 9.0 through version 126.96.36.199.
All the data obtained from this breach has been made available on a Mirror site: https://ht.transparencytoolkit.org and now WikeLeaks : https://wikileaks.org/hackingteam/emails/emailid/45977 has also uploaded this data and made it easier to investigate by allowing users to search for Keywords.
I would think there could also be more on the way!
New Zero-Day: CVE-2015-5122
Affected software versions
Adobe Flash Player 188.8.131.52 and earlier versions for Windows and Macintosh
Adobe Flash Player 184.108.40.206 and earlier versions for Linux installed with Google Chrome
Adobe Flash Player Extended Support Release version 220.127.116.112 and earlier 13.x versions for Windows and Macintosh
Adobe Flash Player Extended Support Release version 18.104.22.1681 and earlier 11.x versions for Linux
Adobe Security Bulletin
WikiLeaks Reference – New Zero-Day
Link to the New POC
Link to the Old POC
Public POC when ran in the Browser the exploit opens the Calc.exe on Windows.
Picture compliments of @dummys1337
Now a new issue has been released CVE-2015-5123 again from The Hacking Team. FireEye actually caught this one and reported to Adobe.
Both 5122 and 5123 let malicious Flash files execute code on victims’ computers and install Malware. Present in the Windows, Linux and OS X builds of the plugin.