CVE-2011-2140

2011-08-1022:55:00

CWE-119

[email protected]

web.nvd.nist.gov

adobe

flash player

adobe air

cve-2011-2140

vulnerability

code execution

memory corruption

nvd

7.5 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.935 High

EPSS

Percentile

99.1%

JSON

Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and Solaris and before 10.3.186.3 on Android, and Adobe AIR before 2.7.1 on Windows and Mac OS X and before 2.7.1.1961 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2011-2135, CVE-2011-2417, and CVE-2011-2425.

CPENameOperatorVersion
adobe:flash_playeradobe flash playerle10.3.181.36
adobe:flash_playeradobe flash playereq6.0.21.0
adobe:flash_playeradobe flash playereq6.0.79
adobe:flash_playeradobe flash playereq7.0
adobe:flash_playeradobe flash playereq7.0.1
adobe:flash_playeradobe flash playereq7.0.14.0
adobe:flash_playeradobe flash playereq7.0.19.0
adobe:flash_playeradobe flash playereq7.0.24.0
adobe:flash_playeradobe flash playereq7.0.25
adobe:flash_playeradobe flash playereq7.0.53.0

CPE	Name	Operator	Version
adobe:flash_player	adobe flash player	le	10.3.181.36
adobe:flash_player	adobe flash player	eq	6.0.21.0
adobe:flash_player	adobe flash player	eq	6.0.79
adobe:flash_player	adobe flash player	eq	7.0
adobe:flash_player	adobe flash player	eq	7.0.1
adobe:flash_player	adobe flash player	eq	7.0.14.0
adobe:flash_player	adobe flash player	eq	7.0.19.0
adobe:flash_player	adobe flash player	eq	7.0.24.0
adobe:flash_player	adobe flash player	eq	7.0.25
adobe:flash_player	adobe flash player	eq	7.0.53.0