CVE-2014-0505

2014-03-1410:55:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2014-0505

adobe shockwave player

remote code execution

memory corruption

nvd

7.9 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.012 Low

EPSS

Percentile

85.0%

JSON

Adobe Shockwave Player before 12.1.0.150 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.

CPENameOperatorVersion
adobe:shockwave_playeradobe shockwave playereq12.0.0.112
adobe:shockwave_playeradobe shockwave playerle12.0.9.149
adobe:shockwave_playeradobe shockwave playereq12.0.4.144
adobe:shockwave_playeradobe shockwave playereq12.0.7.148
adobe:shockwave_playeradobe shockwave playereq12.0.2.122
adobe:shockwave_playeradobe shockwave playereq12.0.3.133
adobe:shockwave_playeradobe shockwave playereq12.0.6.147

CPE	Name	Operator	Version
adobe:shockwave_player	adobe shockwave player	eq	12.0.0.112
adobe:shockwave_player	adobe shockwave player	le	12.0.9.149
adobe:shockwave_player	adobe shockwave player	eq	12.0.4.144
adobe:shockwave_player	adobe shockwave player	eq	12.0.7.148
adobe:shockwave_player	adobe shockwave player	eq	12.0.2.122
adobe:shockwave_player	adobe shockwave player	eq	12.0.3.133
adobe:shockwave_player	adobe shockwave player	eq	12.0.6.147