CVE-2013-1386

2013-04-1003:48:00

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

adobe

shockwave player

rce

cve-2013-1386

security

memory corruption

7.6 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.005 Low

EPSS

Percentile

75.3%

JSON

Adobe Shockwave Player before 12.0.2.122 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2013-1384.

CPENameOperatorVersion
adobe:shockwave_playeradobe shockwave playereq8.5.324
adobe:shockwave_playeradobe shockwave playereq5.0
adobe:shockwave_playeradobe shockwave playereq4.0
adobe:shockwave_playeradobe shockwave playereq11.6.5.635
adobe:shockwave_playeradobe shockwave playereq8.5.1
adobe:shockwave_playeradobe shockwave playereq10.1.4.020
adobe:shockwave_playeradobe shockwave playereq11.5.9.615
adobe:shockwave_playeradobe shockwave playereq11.6.0.626
adobe:shockwave_playeradobe shockwave playereq11.5.1.601
adobe:shockwave_playeradobe shockwave playereq11.0.0.456

CPE	Name	Operator	Version
adobe:shockwave_player	adobe shockwave player	eq	8.5.324
adobe:shockwave_player	adobe shockwave player	eq	5.0
adobe:shockwave_player	adobe shockwave player	eq	4.0
adobe:shockwave_player	adobe shockwave player	eq	11.6.5.635
adobe:shockwave_player	adobe shockwave player	eq	8.5.1
adobe:shockwave_player	adobe shockwave player	eq	10.1.4.020
adobe:shockwave_player	adobe shockwave player	eq	11.5.9.615
adobe:shockwave_player	adobe shockwave player	eq	11.6.0.626
adobe:shockwave_player	adobe shockwave player	eq	11.5.1.601
adobe:shockwave_player	adobe shockwave player	eq	11.0.0.456