CVE-2014-0507

2014-04-0823:55:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2014-0507

buffer overflow

adobe flash player

adobe air

arbitrary code execution

security vulnerability

nvd

7.5 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.025 Low

EPSS

Percentile

90.0%

JSON

Buffer overflow in Adobe Flash Player before 11.7.700.275 and 11.8.x through 13.0.x before 13.0.0.182 on Windows and OS X and before 11.2.202.350 on Linux, Adobe AIR before 13.0.0.83 on Android, Adobe AIR SDK before 13.0.0.83, and Adobe AIR SDK & Compiler before 13.0.0.83 allows attackers to execute arbitrary code via unspecified vectors.

CPENameOperatorVersion
adobe:flash_playeradobe flash playereq11.0
adobe:flash_playeradobe flash playereq11.0.1.152
adobe:flash_playeradobe flash playereq11.0.1.153
adobe:flash_playeradobe flash playereq11.1
adobe:flash_playeradobe flash playereq11.1.102.55
adobe:flash_playeradobe flash playereq11.1.102.59
adobe:flash_playeradobe flash playereq11.1.102.62
adobe:flash_playeradobe flash playereq11.1.102.63
adobe:flash_playeradobe flash playereq11.1.111.8
adobe:flash_playeradobe flash playereq11.1.111.44

CPE	Name	Operator	Version
adobe:flash_player	adobe flash player	eq	11.0
adobe:flash_player	adobe flash player	eq	11.0.1.152
adobe:flash_player	adobe flash player	eq	11.0.1.153
adobe:flash_player	adobe flash player	eq	11.1
adobe:flash_player	adobe flash player	eq	11.1.102.55
adobe:flash_player	adobe flash player	eq	11.1.102.59
adobe:flash_player	adobe flash player	eq	11.1.102.62
adobe:flash_player	adobe flash player	eq	11.1.102.63
adobe:flash_player	adobe flash player	eq	11.1.111.8
adobe:flash_player	adobe flash player	eq	11.1.111.44