Lucene search
K
AdobeAdobe Air

146 matches found

CVE
CVE
added 2011/08/10 9:16 p.m.86 views

CVE-2011-2137

CVE-2011-2137: A buffer overflow in Adobe Flash Player allows arbitrary code execution via unspecified vectors. Affected are Flash Player before 10.3.183.5 on Windows, macOS, Linux, and Solaris; Flash Player before 10.3.186.3 on Android; and Adobe AIR before 2.7.1 on Windows/macOS and before 2.7....

10CVSS9AI score0.11549EPSS
CVE
CVE
added 2011/08/10 10:0 p.m.86 views

CVE-2011-2139

CVE-2011-2139 affects Adobe Flash Player prior to 10.3.183.5 (Windows/macOS/Linux/Solaris) and 10.3.186.3 on Android, plus Adobe AIR prior to 2.7.1 (Windows/Mac) and 2.7.1.1961 (Android). It enables remote attackers to bypass the Same Origin Policy and obtain sensitive information via unspecified...

6.4CVSS8.3AI score0.05402EPSS
CVE
CVE
added 2013/04/10 1:0 a.m.86 views

CVE-2013-1378

CVE-2013-1378 affects Adobe Flash Player prior to 10.3.183.75/11.x before 11.7.700.169 on Windows and macOS, prior to 10.3.183.75/11.x before 11.2.202.280 on Linux, prior to 11.1.111.50 on Android 2.x/3.x, and prior to 11.1.115.54 on Android 4.x; and Adobe AIR before 3.7.0.1530 (and AIR SDK & Com...

10CVSS7.7AI score0.04952EPSS
CVE
CVE
added 2014/08/19 10:0 a.m.86 views

CVE-2014-5333

Adobe Flash Player and AIR vulnerabilities (CVE-2014-5333) allow cross-site request forgery (CSRF) against JSONP endpoints via a crafted SWF in an OBJECT element, due to an incomplete fix for CVE-2014-4671. Affected versions include Flash Player before 13.0.0.241 and 14.x before 14.0.0.176 on Win...

4.3CVSS6.7AI score0.03507EPSS
CVE
CVE
added 2011/11/11 4:0 p.m.85 views

CVE-2011-2445

CVE-2011-2445 affects Adobe Flash Player prior to 10.3.183.11 and 11.x prior to 11.1.102.55 (Windows/macOS/Linux/Solaris) and prior to 11.1.102.59 on Android, plus Adobe AIR prior to 3.1.0.4880. The vulnerability allows arbitrary code execution or memory corruption via unspecified vectors, with m...

10CVSS9.7AI score0.05925EPSS
CVE
CVE
added 2013/03/13 10:0 a.m.85 views

CVE-2013-0646

CVE-2013-0646 technical details are not publicly provided in the supplied documents. No affected products, root cause, or fixes are confirmed here. Monitor for updates from the referenced advisories.

10CVSS7.7AI score0.06534EPSS
CVE
CVE
added 2014/02/21 2:0 a.m.85 views

CVE-2014-0498

CVE-2014-0498: A stack-based buffer overflow in Adobe Flash Player (and related AIR components) allows arbitrary code execution via unspecified vectors. Affected products/versions (per the initial description): Flash Player before 11.7.700.269 and 11.8.x up to 12.0.x before 12.0.0.70 on Windows a...

10CVSS8AI score0.07223EPSS
CVE
CVE
added 2014/08/12 10:0 p.m.85 views

CVE-2014-0542

Technical details about CVE-2014-0542 are not publicly available in the provided documents; the connected EUVD entries and advisories mention related issues but do not disclose affected products, root causes, or fixes. Monitor for updates.

10CVSS6.3AI score0.03978EPSS
CVE
CVE
added 2014/09/10 1:0 a.m.85 views

CVE-2014-0553

CVE-2014-0553 is a use-after-free vulnerability in Adobe Flash Player that could allow arbitrary code execution. It affects Flash Player before 13.0.0.244 and 14.x before 15.0.0.152 on Windows and OS X, and before 11.2.202.406 on Linux; also affects Adobe AIR before 15.0.0.249 (Windows/OS X). Ado...

10CVSS8.7AI score0.09321EPSS
CVE
CVE
added 2014/10/15 10:0 a.m.85 views

CVE-2014-0558

CVE-2014-0558 affects Adobe Flash Player prior to 13.0.0.250 and 14.x before 15.0.0.189 on Windows/macOS, and prior to 11.2.202.411 on Linux, plus Adobe AIR prior to 15.0.0.293/SDK before 15.0.0.302. The vulnerability is a memory corruption flaw that allows remote arbitrary code execution or deni...

10CVSS7.7AI score0.05073EPSS
CVE
CVE
added 2013/01/11 10:0 p.m.84 views

CVE-2013-0630

CVE-2013-0630 relates to a buffer overflow in Adobe Flash Player (and Adobe AIR) that could allow arbitrary code execution. The provided Connected documents indicate affected products include Flash Player with platform variants (Windows, Mac OS X, Linux, Android) and Adobe AIR. The OpenVAS/Nessus...

10CVSS7.9AI score0.08158EPSS
CVE
CVE
added 2011/08/10 10:0 p.m.83 views

CVE-2011-2136

CVE-2011-2136 is an Adobe Flash Player and Adobe AIR vulnerability described as an integer overflow that could allow remote code execution. Affected products include Flash Player prior to 10.3.183.5 on Windows, macOS, Linux, and Solaris; Flash Player prior to 10.3.186.3 on Android; and AIR before...

10CVSS9AI score0.09568EPSS
CVE
CVE
added 2011/08/10 10:0 p.m.83 views

CVE-2011-2138

CVE-2011-2138 refers to an integer overflow in Adobe Flash Player (and associated AIR) that could allow code execution. Affected product scope includes Flash Player on Windows, macOS, Linux, Solaris (pre-10.3.183.5), and Android (pre-10.3.186.3), plus Adobe AIR on Windows/macOS (pre-2.7.1) and An...

10CVSS9AI score0.09568EPSS
CVE
CVE
added 2011/11/11 4:0 p.m.83 views

CVE-2011-2454

Adobe Flash Player prior to 10.3.183.11 and 11.x prior to 11.1.102.55 (Windows/macOS/Linux/Solaris) and prior to 11.1.102.59 on Android, plus Adobe AIR prior to 3.1.0.4880, is affected by CVE-2011-2454 (memory corruption) and likely related issues; OpenSUSE-2011-4 patch updates Flash Player to 11...

10CVSS9.7AI score0.05847EPSS
CVE
CVE
added 2014/09/10 1:0 a.m.83 views

CVE-2014-0549

CVE-2014-0549 affects Adobe Flash Player and related AIR components. The vulnerability is a memory corruption issue that could allow remote code execution or a denial of service, triggered via unspecified vectors. Affected versions include Flash Player before 13.0.0.244 and 14.x up to 15.x before...

10CVSS7.7AI score0.05803EPSS
CVE
CVE
added 2011/11/11 4:0 p.m.82 views

CVE-2011-2452

CVE-2011-2452 is a Flash Player/Adobe AIR vulnerability family affecting multiple platforms (Windows, macOS, Linux, Solaris, Android) with memory corruption that could allow arbitrary code execution or memory corruption-based DoS. The issue is part of a broader set of Adobe Flash Player vulnerabi...

10CVSS9.7AI score0.05847EPSS
CVE
CVE
added 2012/10/09 10:0 a.m.82 views

CVE-2012-5256

CVE-2012-5256 concerns Adobe Flash Player and Adobe AIR. The vulnerability allows attackers to execute arbitrary code or cause a denial of service via memory corruption, with unspecified attack vectors. Affected Flash Player versions include Windows/macOS: before 10.3.183.29 and 11.x before 11.4....

10CVSS7.8AI score0.04727EPSS
CVE
CVE
added 2014/05/14 10:0 a.m.82 views

CVE-2014-0517

Adobe Flash Player and AIR vulnerabilities (CVE-2014-0517) allow bypass of intended access restrictions in specific older builds: Flash Player before 13.0.0.214 (Windows/macOS) and before 11.2.202.359 (Linux), and AIR SDK before 13.0.0.111. The issue is described as a bypass via unspecified vecto...

7.5CVSS6.4AI score0.04443EPSS
CVE
CVE
added 2014/09/10 1:0 a.m.82 views

CVE-2014-0547

Adobe Flash Player and AIR components are affected by a memory-corruption vulnerability (CVE-2014-0547) that can be triggered by unspecified vectors. Impacted products include Flash Player versions prior to 13.0.0.244 and 14.x/15.x prior to 15.0.0.152 on Windows and OS X, and prior to 11.2.202.40...

10CVSS7.7AI score0.05803EPSS
CVE
CVE
added 2009/12/10 7:0 p.m.81 views

CVE-2009-3794

CVE-2009-3794 describes a heap-based buffer overflow in Adobe Flash Player before 10.0.42.34 and Adobe AIR before 1.5.3 triggered by crafted JPEG data in SWF files, enabling remote code execution. Connected advisories (e.g., RHSA-2009:1657/1658) indicate Red Hat patching Flash-Plugin with upgrade...

9.3CVSS8AI score0.11556EPSS
CVE
CVE
added 2011/11/11 4:0 p.m.81 views

CVE-2011-2455

CVE-2011-2455 affects Adobe Flash Player and Adobe AIR with memory corruption flaws that can lead to arbitrary code execution or denial of service. Affected versions include Flash Player before 10.3.183.11 and 11.x before 11.1.102.55 (and Android/other platforms as specified), with fixes delivere...

10CVSS9.7AI score0.05847EPSS
CVE
CVE
added 2013/04/10 1:0 a.m.81 views

CVE-2013-1380

Adobe Flash Player and AIR are affected by CVE-2013-1380. The vulnerability enables arbitrary code execution or memory corruption via unspecified vectors and is mitigated by updating Flash Player to version 11.2.202.280 (and corresponding AIR fixes) as part of the openSUSE/OpenVAS advisories refe...

10CVSS7.7AI score0.04952EPSS
CVE
CVE
added 2011/11/11 4:0 p.m.80 views

CVE-2011-2450

Adobe Flash Player prior to 10.3.183.11 and 11.x prior to 11.1.102.55 (Windows, macOS, Linux, Solaris) and prior to 11.1.102.59 on Android; Adobe AIR prior to 3.1.0.4880 is affected by CVE-2011-2450, causing arbitrary code execution or memory corruption leading to DoS. Root cause described as mem...

10CVSS9.5AI score0.05847EPSS
CVE
CVE
added 2011/11/11 4:0 p.m.80 views

CVE-2011-2459

CVE-2011-2459 affects Adobe Flash Player and Adobe AIR as summarized in the initial entry. The vulnerability is described as a memory corruption issue that could enable remote code execution or cause a denial of service via unspecified vectors (notably separate from several related CVEs). Affecte...

10CVSS9.7AI score0.05847EPSS
CVE
CVE
added 2011/11/11 4:0 p.m.80 views

CVE-2011-2460

CVE-2011-2460 concerns multiple memory-corruption vulnerabilities in Adobe Flash Player (Windows, macOS, Linux, Solaris) and Adobe AIR, allowing arbitrary code execution or denial of service via unspecified vectors. The description in the initial record identifies affected versions as Flash Playe...

10CVSS9.7AI score0.05847EPSS
CVE
CVE
added 2012/10/09 10:0 a.m.80 views

CVE-2012-5249

CVE-2012-5249 is a buffer-overflow in Adobe Flash Player and Adobe AIR that allows arbitrary code execution. Affected: Flash Player pre-10.3.183.29 and pre-11.4.402.287 on Windows/Mac; pre-10.3.183.29 and pre-11.2.202.243 on Linux; Android 2.x–4.x; and Adobe AIR pre-3.4.0.2710. Root cause: buffer...

10CVSS7.9AI score0.07273EPSS
CVE
CVE
added 2013/05/16 10:0 a.m.80 views

CVE-2013-2728

CVE-2013-2728 concerns Adobe Flash Player (and AIR) with a memory-corruption based vulnerability that could allow arbitrary code execution or a denial of service via unspecified vectors. The initial description lists affected versions: Flash Player before 10.3.183.86 and 11.x before 11.7.700.202 ...

10CVSS7.7AI score0.05319EPSS
CVE
CVE
added 2014/07/09 1:0 a.m.80 views

CVE-2014-0537

CVE-2014-0537 affects Adobe Flash Player and related AIR components across Windows, OS X, Linux, and Android. The issue is a security bypass of intended access restrictions, enabling bypass via unspecified vectors (not a code path described in the provided text). Affected versions include Flash P...

7.5CVSS6.5AI score0.04384EPSS
CVE
CVE
added 2014/08/12 10:0 p.m.80 views

CVE-2014-0538

CVE-2014-0538 is a Use-After-Free vulnerability in Adobe Flash Player (and related AIR components) that could allow arbitrary code execution. According to the initial entry, it affects Flash Player before 13.0.0.241 and 14.x before 14.0.0.176 on Windows and macOS, and before 11.2.202.400 on Linux...

10CVSS7.4AI score0.07552EPSS
CVE
CVE
added 2014/09/10 1:0 a.m.80 views

CVE-2014-0550

Technical details about CVE-2014-0550 are not provided in the connected documents. Public information in the initial entry lists affected versions and impact but no concrete root-cause, exploit details, or remediation are included here. Monitor for updates.

10CVSS7.7AI score0.05803EPSS
CVE
CVE
added 2015/01/13 11:0 p.m.80 views

CVE-2015-0301

CVE-2015-0301 concerns Adobe Flash Player and Flash plugin file validation. Affected: Flash Player before 13.0.0.260 and 14.x up to 16.x before 16.0.0.257 on Windows/macOS; Flash Player before 11.2.202.429 on Linux; Adobe AIR before 16.0.0.272 on Windows/macOS; plus AIR SDKs before 16.0.0.272. De...

10CVSS6.3AI score0.05166EPSS
CVE
CVE
added 2011/08/10 10:0 p.m.79 views

CVE-2011-2415

CVE-2011-2415: Buffer overflow in Adobe Flash Player before 10.3.183.5 (Windows/macOS/Linux/Solaris) and before 10.3.186.3 on Android, and Adobe AIR before 2.7.1 (Windows/macOS) and before 2.7.1.1961 on Android. Attacks could execute arbitrary code via unspecified vectors; product versions affect...

10CVSS9AI score0.11848EPSS
CVE
CVE
added 2011/11/11 4:0 p.m.79 views

CVE-2011-2451

CVE-2011-2451 affects Adobe Flash Player prior to 10.3.183.11 and 11.x prior to 11.1.102.55 on Windows, macOS, Linux, and Solaris, and prior to 11.1.102.59 on Android, plus Adobe AIR before 3.1.0.4880. The vulnerability allows arbitrary code execution or memory corruption via unspecified vectors ...

10CVSS9.7AI score0.05847EPSS
CVE
CVE
added 2011/11/11 4:0 p.m.79 views

CVE-2011-2458

CVE-2011-2458 : Adobe Flash Player (and related AIR runtime) versions prior to the patched releases are vulnerable to a cross-domain policy bypass when loaded via Internet Explorer. Affected: Flash Player before 10.3.183.11 and 11.x before 11.1.102.55 on Windows/macOS/Linux/Solaris, and before 11...

9.3CVSS9AI score0.03596EPSS
CVE
CVE
added 2012/10/09 10:0 a.m.79 views

CVE-2012-5251

CVE-2012-5251 is a buffer overflow vulnerability in Adobe Flash Player (Windows, Mac OS X, Linux) and Adobe AIR prior to the versions listed in the initial description, allowing attackers to execute arbitrary code via unspecified vectors. The connected sources confirm this CVE is among multiple F...

10CVSS7.9AI score0.07273EPSS
CVE
CVE
added 2013/03/13 10:0 a.m.79 views

CVE-2013-0650

CVE-2013-0650 is a use-after-free vulnerability in Adobe Flash Player (Windows, macOS, Linux) and related AIR components that could allow arbitrary code execution via unspecified vectors. Affected versions include Flash Player before 10.3.183.68 and 11.x before 11.6.602.180 on Windows/Mac; before...

10CVSS7.4AI score0.06534EPSS
CVE
CVE
added 2013/03/13 10:0 a.m.79 views

CVE-2013-1375

CVE-2013-1375 describes a heap-based buffer overflow in Adobe Flash Player prior to certain 10.3/11.x revisions and Adobe AIR prior to 3.6.0.6090, allowing arbitrary code execution via unspecified vectors. The initial entry lists affected platforms (Windows, macOS, Linux, Android) and correspondi...

10CVSS7.9AI score0.09257EPSS
CVE
CVE
added 2015/01/13 11:0 p.m.79 views

CVE-2015-0303

CVE-2015-0303 affects Adobe Flash Player and Adobe AIR as described in APSB15-01. The vulnerability is a memory corruption in Flash Player that could allow remote code execution or a denial of service via unspecified vectors. Affected versions include Flash Player before 13.0.0.260 and 14.x up to...

10CVSS7.7AI score0.05908EPSS
CVE
CVE
added 2009/12/10 7:0 p.m.78 views

CVE-2009-3798

CVE-2009-3798 is part of multiple memory‑corruption flaws in Adobe Flash Player/Flash-plugin as of 2009. Connected advisories indicate this vulnerability (among others) was addressed by updating Flash Player to version 10.0.42.34, with Red Hat advisories RHSA-2009:1657/1658 recommending this upgr...

9.3CVSS7.8AI score0.06253EPSS
CVE
CVE
added 2011/11/11 4:0 p.m.78 views

CVE-2011-2456

CVE-2011-2456 refers to a buffer overflow in Adobe Flash Player prior to 10.3.183.11 and 11.x prior to 11.1.102.55 (and on Android prior to 11.1.102.59) that allows an attacker to execute arbitrary code via unspecified vectors. Impact is complete compromise of affected host. Mitigation exists: up...

10CVSS9.6AI score0.0896EPSS
CVE
CVE
added 2011/11/11 4:0 p.m.78 views

CVE-2011-2457

CVE-2011-2457 corresponds to a stack-based buffer overflow in Adobe Flash Player, affecting versions prior to 10.3.183.11 and 11.x prior to 11.1.102.55 on Windows, macOS, Linux, and Solaris, plus prior to 11.1.102.59 on Android, and Adobe AIR before 3.1.0.4880. This vulnerability allows arbitrary...

10CVSS9.7AI score0.0896EPSS
CVE
CVE
added 2012/10/09 10:0 a.m.78 views

CVE-2012-5255

CVE-2012-5255 corresponds to a buffer overflow in Adobe Flash Player (and related AIR components) that allowed arbitrary code execution via unspecified vectors. Connected advisories confirm this family of vulnerabilities and associate it with Flash Player/Adobe Air, with remediation lists and fix...

10CVSS7.9AI score0.07273EPSS
CVE
CVE
added 2012/10/09 10:0 a.m.78 views

CVE-2012-5264

CVE-2012-5264 is a buffer overflow vulnerability in Adobe Flash Player and Adobe AIR. Affected products/versions (per initial description): Flash Player before 10.3.183.29 and 11.x before 11.4.402.287 on Windows/Mac; Flash Player before 10.3.183.29 and 11.x before 11.2.202.243 on Linux; Flash Pla...

10CVSS7.9AI score0.07273EPSS
CVE
CVE
added 2012/10/09 10:0 a.m.77 views

CVE-2012-5252

CVE-2012-5252 affects Adobe Flash Player and Adobe AIR. The vulnerability is described as memory corruption that can allow arbitrary code execution or a denial of service via unspecified vectors. Affected components include Flash Player versions prior to 10.3.183.29 and 11.x prior to 11.4.402.287...

10CVSS7.8AI score0.05745EPSS
CVE
CVE
added 2012/10/09 10:0 a.m.77 views

CVE-2012-5263

CVE-2012-5263 affects Adobe Flash Player (Windows/macOS/Linux) and Adobe AIR prior to the listed build versions, enabling arbitrary code execution or memory corruption via unspecified vectors. Affected Flash Player versions: Windows/macOS before 10.3.183.29 and 11.x before 11.4.402.287; Linux bef...

10CVSS7.8AI score0.04727EPSS
CVE
CVE
added 2012/10/09 10:0 a.m.76 views

CVE-2012-5253

Technical details for CVE-2012-5253 are not publicly provided in the connected documents. Monitor for updates from vendor advisories and CVE databases.

10CVSS7.9AI score0.07273EPSS
CVE
CVE
added 2014/08/12 10:0 p.m.76 views

CVE-2014-0540

The CVE-2014-0540 entry concerns memory address discovery bypass of ASLR in Adobe Flash Player prior to 13.0.0.241, 14.x before 14.0.0.176 (Windows/macOS), Linux version 11.2.202.400, and Adobe AIR before 14.0.0.178 (Windows/macOS) and before 14.0.0.179 (Android), plus related AIR SDKs. It is des...

10CVSS6.3AI score0.03978EPSS
CVE
CVE
added 2015/01/13 11:0 p.m.76 views

CVE-2015-0305

CVE-2015-0305 is a type-confusion vulnerability in Adobe Flash Player (and related AIR components) caused by redefinition of host objects via equality, leading to object type inconsistencies and potential arbitrary code execution. Affected products include Flash Player up to 16.x (Windows/macOS) ...

9.3CVSS7.4AI score0.06098EPSS
CVE
CVE
added 2012/10/09 10:0 a.m.75 views

CVE-2012-5257

CVE-2012-5257 is a buffer overflow in Adobe Flash Player (Windows/Mac/Linux/Android) prior to the specified patched versions, and in Adobe AIR prior to 3.4.0.2710. The vulnerability allows arbitrary code execution via unspecified vectors. Affected versions include Flash Player before 10.3.183.29 ...

10CVSS7.9AI score0.07273EPSS
CVE
CVE
added 2012/10/09 10:0 a.m.75 views

CVE-2012-5262

CVE-2012-5262 corresponds to a buffer overflow vulnerability in Adobe Flash Player and Adobe AIR, affecting Flash Player on Windows/Mac OS X prior to 11.4.402.287 (and earlier build 10.3.183.29), Linux prior to 11.2.202.243, Android 2.x/3.x prior to 11.1.111.19, and Android 4.x prior to 11.1.115....

10CVSS7.9AI score0.07273EPSS
Total number of security vulnerabilities146