Lucene search
K
AdobeAdobe Air

146 matches found

CVE
CVE
added 2012/10/09 10:0 a.m.75 views

CVE-2012-5257

CVE-2012-5257 is a buffer overflow in Adobe Flash Player (Windows/Mac/Linux/Android) prior to the specified patched versions, and in Adobe AIR prior to 3.4.0.2710. The vulnerability allows arbitrary code execution via unspecified vectors. Affected versions include Flash Player before 10.3.183.29 ...

10CVSS7.9AI score0.07273EPSS
CVE
CVE
added 2012/10/09 10:0 a.m.75 views

CVE-2012-5261

CVE-2012-5261 affects Adobe Flash Player and Adobe AIR. Affected: Flash Player before 10.3.183.29 and 11.x before 11.4.402.287 on Windows/macOS; Flash Player before 10.3.183.29 and 11.x before 11.2.202.243 on Linux; before 11.1.111.19 on Android 2.x/3.x; before 11.1.115.20 on Android 4.x. Also af...

10CVSS7.8AI score0.04727EPSS
CVE
CVE
added 2012/10/09 10:0 a.m.75 views

CVE-2012-5262

CVE-2012-5262 corresponds to a buffer overflow vulnerability in Adobe Flash Player and Adobe AIR, affecting Flash Player on Windows/Mac OS X prior to 11.4.402.287 (and earlier build 10.3.183.29), Linux prior to 11.2.202.243, Android 2.x/3.x prior to 11.1.111.19, and Android 4.x prior to 11.1.115....

10CVSS7.9AI score0.07273EPSS
CVE
CVE
added 2013/04/10 1:0 a.m.75 views

CVE-2013-1379

Adobe Flash Player and Adobe AIR contain a vulnerability (CVE-2013-1379) where improper initialization of pointer arrays enables remote code execution or memory corruption. Affected versions span Windows/Mac OS X pre-10.3.183.75 and 11.x prior to 11.7.700.169, Linux pre-11.2.202.280, Android 2.x/...

10CVSS7.6AI score0.0623EPSS
CVE
CVE
added 2014/05/14 10:0 a.m.75 views

CVE-2014-0519

CVE-2014-0519 describes a sandbox security bypass in Adobe Flash Player and AIR components. The flaw affects Flash Player pre-13.0.0.214 on Windows/macOS and pre-11.2.202.359 on Linux, plus AIR SDK before 13.0.0.111, enabling attackers to bypass access restrictions via crafted files opened by a u...

7.5CVSS6.4AI score0.04443EPSS
CVE
CVE
added 2014/09/10 1:0 a.m.75 views

CVE-2014-0551

Technical details for CVE-2014-0551 are not present in the connected documents; no specific product/version/impact/fix information is available beyond the initial description. Monitor for updates.

10CVSS7.7AI score0.05803EPSS
CVE
CVE
added 2014/09/10 1:0 a.m.75 views

CVE-2014-0555

Technical details about CVE-2014-0555 are not provided in the supplied documents. Monitor for updates from official advisories; no affected products, vectors, or fixes are specified here.

10CVSS7.7AI score0.05803EPSS
CVE
CVE
added 2014/09/10 1:0 a.m.75 views

CVE-2014-0557

CVE-2014-0557 affects Adobe Flash Player (and related AIR components) across Windows, OS X, Linux, and Android/APIs. The vulnerability arises from improper restriction of memory address discovery, enabling bypass of ASLR via unspecified vectors. The CVSS 2.0 base metrics indicate a high-severity,...

10CVSS6.3AI score0.05074EPSS
CVE
CVE
added 2009/12/10 7:0 p.m.74 views

CVE-2009-3799

CVE-2009-3799 : Integer overflow in Adobe Flash Player (before 10.0.42.34) and Adobe AIR (before 1.5.3) allows remote code execution via a SWF with a large exception_count, triggering memory corruption in Verifier::parseExceptionHandlers. Affected products are Adobe Flash Player/ AIR; Red Hat adv...

9.3CVSS8AI score0.09955EPSS
CVE
CVE
added 2014/05/14 10:0 a.m.74 views

CVE-2014-0518

Adobe Flash Player vulnerability CVE-2014-0518 (and related CVEs) allows bypass of intended access restrictions via unspecified vectors. Affected products/versions noted in the initial entry: Flash Player for Windows and macOS prior to 13.0.0.214, Flash Player for Linux prior to 11.2.202.359, Ado...

7.5CVSS6.4AI score0.04443EPSS
CVE
CVE
added 2012/10/09 10:0 a.m.73 views

CVE-2012-5258

CVE-2012-5258 affects Adobe Flash Player and Adobe AIR. The Flash memory corruption allows arbitrary code execution or a denial of service via unspecified vectors. Affected: Flash Player on Windows/Mac (before 10.3.183.29 and before 11.x; specifically 11.4.402.287+), Linux (before 11.2.202.243+),...

10CVSS7.8AI score0.04727EPSS
CVE
CVE
added 2012/10/09 10:0 a.m.73 views

CVE-2012-5259

CVE-2012-5259 is a buffer overflow in Adobe Flash Player and related AIR components that allows arbitrary code execution via unspecified vectors. Affected software includes Flash Player on Windows/Mac OS X (before 10.3.183.29 and 11.x before 11.4.402.287; Linux before 10.3.183.29 and 11.x before ...

10CVSS7.9AI score0.07273EPSS
CVE
CVE
added 2014/06/11 10:0 a.m.73 views

CVE-2014-0535

CVE-2014-0535 is an Adobe Flash Player and Adobe AIR security bypass vulnerability. It arises from an error in handling specially crafted SWF files, allowing attackers to bypass intended access restrictions. Affected products include Flash Player on Windows/OS X (before 13.0.0.223 and before 14.0...

7.5CVSS6.5AI score0.10052EPSS
CVE
CVE
added 2014/06/11 10:0 a.m.73 views

CVE-2014-0536

CVE-2014-0536 affects Adobe Flash Player (Windows/macOS: before 13.0.0.223, and 14.x before 14.0.0.125; Linux: before 11.2.202.378) and Adobe AIR/ AIR SDK before 14.0.0.110, with memory corruption enabling arbitrary code execution or DoS via unspecified vectors. Affected components include Flash ...

10CVSS7.7AI score0.10912EPSS
CVE
CVE
added 2015/01/13 11:0 p.m.73 views

CVE-2015-0302

CVE-2015-0302 affects Adobe Flash Player before 13.0.0.260 and 14.x through 16.x before 16.0.0.257 on Windows/OS X, and before 11.2.202.429 on Linux, as well as Adobe AIR before 16.0.0.245 on Windows/OS X and before 16.0.0.272 on Android, plus AIR SDK before 16.0.0.272 and AIR SDK & Compiler befo...

5CVSS5.9AI score0.0487EPSS
CVE
CVE
added 2015/01/13 11:0 p.m.73 views

CVE-2015-0308

CVE-2015-0308 is a use-after-free in Adobe Flash Player that enables remote code execution via unspecified vectors. Affected versions include Flash Player before 13.0.0.260 and 14.x up to 16.x before 16.0.0.257 on Windows/OS X, and before 11.2.202.429 on Linux; Adobe AIR before 16.0.0.272 on Wind...

10CVSS7.4AI score0.0723EPSS
CVE
CVE
added 2012/10/09 10:0 a.m.72 views

CVE-2012-5265

CVE-2012-5265 is a buffer overflow in Adobe Flash Player and Adobe AIR that allows arbitrary code execution via unspecified vectors. Affected products/versions include Flash Player on Windows/Mac before 10.3.183.29 and before 11.4.402.287 for 11.x, Linux before 11.2.202.243, Android 2.x/3.x befor...

10CVSS7.9AI score0.07273EPSS
CVE
CVE
added 2014/09/10 1:0 a.m.72 views

CVE-2014-0548

Summary (CVE-2014-0548) : Adobe Flash Player (and related AIR SDK packages) contains a vulnerability that could allow a remote bypass of the Same Origin Policy. The Mageia advisory MGASA-2014-0382 notes that Flash Player 11.2.202.406 fixes multiple security issues, including a bypass of the same-...

7.5CVSS6.5AI score0.04855EPSS
CVE
CVE
added 2015/01/13 11:0 p.m.72 views

CVE-2015-0309

CVE-2015-0309 is a heap-based buffer overflow in Adobe Flash Player prior to 13.0.0.260 and 14.x through 16.x prior to 16.0.0.257 (Windows/OS X) and before 11.2.202.429 (Linux), and in Adobe AIR prior to 16.0.0.245 (Windows/OS X) and before 16.0.0.272 (Android), plus Adobe AIR SDKs before 16.0.0....

10CVSS7.8AI score0.08742EPSS
CVE
CVE
added 2007/07/10 12:0 a.m.71 views

CVE-2007-3640

Adobe Integrated Runtime (AIR, also known as Apollo) is affected by CVE-2007-3640. The issue allows context-dependent attackers to modify arbitrary files inside an executing .air file (compiled AIR application) and perform cross-site scripting (XSS) attacks, demonstrated by an app that modifies a...

4.3CVSS5.5AI score0.02562EPSS
CVE
CVE
added 2012/10/09 10:0 a.m.71 views

CVE-2012-5250

Technical details for CVE-2012-5250 are not provided in the supplied documents. Public references list the CVE among Flash Player vulnerabilities, but no specifics (affected products, versions, impact or fixes) are included here. Monitor for updates.

10CVSS7.9AI score0.07273EPSS
CVE
CVE
added 2013/03/13 10:0 a.m.71 views

CVE-2013-1371

Adobe Flash Player and related AIR components were vulnerable to arbitrary code execution or memory corruption via unspecified vectors (CVE-2013-1371). Affected versions included Flash Player before 10.3.183.68 and 11.x before 11.6.602.180 on Windows/macOS, before 10.3.183.68 and 11.x before 11.2...

10CVSS7.7AI score0.05141EPSS
CVE
CVE
added 2013/05/16 10:0 a.m.71 views

CVE-2013-3332

Technical details are not publicly available in the provided documents. Monitor for updates from the sources; no specific affected products, versions, or fixes are disclosed here.

10CVSS7.7AI score0.05319EPSS
CVE
CVE
added 2009/12/10 7:0 p.m.70 views

CVE-2009-3797

CVE-2009-3797 affects Adobe Flash Player 10.x (before 10.0.42.34) and Adobe AIR (before 1.5.3); memory corruption could allow arbitrary code execution. The vulnerability is tied to multiple Flash-era CVEs and was addressed by Red Hat open advisories and SUSE/openSUSE/NASLplugin references recomme...

9.3CVSS7.8AI score0.06253EPSS
CVE
CVE
added 2012/10/09 10:0 a.m.70 views

CVE-2012-5248

CVE-2012-5248 describes a buffer overflow in Adobe Flash Player (affecting Windows, Mac, Linux, Android) prior to the listed fixed versions (e.g., Flash Player 10.3.183.29/11.x up to 11.4.402.287 on desktop, 11.2.202.243 on some Linux/OpenSUSE advisories, 11.1.111.19/11.1.115.20 on Android) and A...

10CVSS7.9AI score0.07273EPSS
CVE
CVE
added 2012/10/09 10:0 a.m.70 views

CVE-2012-5260

CVE-2012-5260 is a concrete Adobe Flash Player/Adobe AIR vulnerability. It describes a buffer overflow in Flash Player prior to 10.3.183.29 and 11.x prior to 11.4.402.287 on Windows/macOS, Linux before 10.3.183.29 and 11.2.202.243, Android 2.x/3.x before 11.1.111.19, and Android 4.x before 11.1.1...

10CVSS7.9AI score0.07273EPSS
CVE
CVE
added 2012/11/13 11:0 a.m.70 views

CVE-2012-5287

CVE-2012-5287 is a buffer overflow vulnerability in Adobe Flash Player and Adobe AIR that allows arbitrary code execution via unspecified vectors. Affected are Flash Player on Windows/Mac (before 10.3.183.29 and 11.x before 11.4.402.287), Linux (before 11.2.202.243 in some builds), Android 2.x/3....

10CVSS7.9AI score0.07273EPSS
CVE
CVE
added 2013/05/16 10:0 a.m.70 views

CVE-2013-3326

Technical details for CVE-2013-3326 are not publicly available in the provided connected documents; monitor for updates.

10CVSS7.7AI score0.0539EPSS
CVE
CVE
added 2013/05/16 10:0 a.m.70 views

CVE-2013-3327

Technical details for CVE-2013-3327 are not publicly available in the provided connected documents. Please monitor for updates from official advisories; current sources here reference multiple related CVEs but provide no implementation specifics.

10CVSS7.7AI score0.0539EPSS
CVE
CVE
added 2013/05/16 10:0 a.m.70 views

CVE-2013-3330

Technical details for CVE-2013-3330 are not publicly available in the provided connected documents; no affected products, exact vulnerability vectors, impact, or fixes are described here. Monitor for updates.

10CVSS7.7AI score0.05319EPSS
CVE
CVE
added 2014/09/10 10:0 a.m.70 views

CVE-2014-0554

CVE-2014-0554 affects Adobe Flash Player and AIR components. The initial entry states a bypass of intended access restrictions via unspecified vectors for: Flash Player before 13.0.0.244 and 14.x and 15.x before 15.0.0.152 (Windows/OS X) and before 11.2.202.406 (Linux); Flash AIR before 15.0.0.24...

10CVSS6.4AI score0.06903EPSS
CVE
CVE
added 2015/01/13 11:0 p.m.70 views

CVE-2015-0304

CVE-2015-0304 is described in connected advisories as a heap-based buffer overflow in Adobe Flash Player and Adobe AIR that enables arbitrary code execution via unspecified vectors. Affected products/versions include Flash Player before 13.0.0.260 and 14.x up to 16.x before 16.0.0.257 on Windows/...

10CVSS7.8AI score0.08742EPSS
CVE
CVE
added 2013/05/16 10:0 a.m.68 views

CVE-2013-3325

Technical details for CVE-2013-3325 are not publicly available in the provided documents. The connected EUVD entries mention malware in sbrugna but do not specify affected product/version, root cause, impact, or remediation for this CVE. Monitor for updates.

10CVSS7.7AI score0.0539EPSS
CVE
CVE
added 2013/05/16 10:0 a.m.68 views

CVE-2013-3333

Technical details for CVE-2013-3333 are not publicly available in the provided connected documents. Monitor for updates; no concrete product/version/impact data is disclosed here.

10CVSS7.7AI score0.0539EPSS
CVE
CVE
added 2009/12/10 7:0 p.m.67 views

CVE-2009-3800

The CVE-2009-3800 entry describes multiple vulnerabilities in Adobe Flash Player prior to 10.0.42.34 and Adobe AIR prior to 1.5.3, which could cause an application crash or possibly allow arbitrary code execution via unknown vectors (denial of service and remote code execution impacts). Connected...

9.3CVSS8.1AI score0.07568EPSS
CVE
CVE
added 2013/05/16 10:0 a.m.66 views

CVE-2013-3324

Technical details for CVE-2013-3324 are not publicly available in the provided documents. Monitor for updates and gather future information from linked sources.

10CVSS7.7AI score0.0539EPSS
CVE
CVE
added 2009/12/10 7:0 p.m.64 views

CVE-2009-3796

Adobe Flash Player before 10.0.42.34 and Adobe AIR before 1.5.3 are affected by CVE-2009-3796 (data injection vulnerability) that could allow remote code execution via unspecified vectors. Red Hat advisories RHSA-2009:1657/1658 and related summaries indicate upgrading Flash to 10.0.42.34 as remed...

9.3CVSS8AI score0.07115EPSS
CVE
CVE
added 2013/05/16 10:0 a.m.64 views

CVE-2013-3328

Technical details about CVE-2013-3328 are not provided in the connected documents. The available sources do not disclose affected products, versions, roots, or fixes. Monitor for updates.

10CVSS7.7AI score0.0539EPSS
CVE
CVE
added 2013/05/16 10:0 a.m.64 views

CVE-2013-3335

Technical details for CVE-2013-3335 are not provided in the connected EUVD entries. The documents reference malware notes but do not specify vulnerability mechanics, affected products, or fixes. Monitor for updates from vendors/ENISA for concrete details.

10CVSS7.7AI score0.05319EPSS
CVE
CVE
added 2013/05/16 10:0 a.m.63 views

CVE-2013-3329

Technical details about CVE-2013-3329 are not publicly available in the provided documents; no product, version, impact or remediation information is included beyond the initial description. Monitor for updates.

10CVSS7.7AI score0.05319EPSS
CVE
CVE
added 2012/10/09 10:0 a.m.62 views

CVE-2012-5254

CVE-2012-5254 corresponds to a buffer overflow in Adobe Flash Player and Adobe AIR with multiple affected versions. According to the provided documents, Flash Player is vulnerable on Windows/Mac OS X to versions before 10.3.183.29 and 11.x before 11.4.402.287, on Linux to versions before 11.2.202...

10CVSS7.9AI score0.07273EPSS
CVE
CVE
added 2012/11/13 11:0 a.m.62 views

CVE-2012-5286

CVE-2012-5286 is a buffer overflow in Adobe Flash Player prior to 10.3.183.29 and 11.x prior to 11.4.402.287 on Windows/macOS, prior to 10.3.183.29 and 11.x prior to 11.2.202.243 on Linux, and prior to 11.1.111.19 (Android 2.x/3.x) and 11.1.115.20 (Android 4.x); and in Adobe AIR prior to 3.4.0.27...

10CVSS7.9AI score0.07273EPSS
CVE
CVE
added 2009/12/10 7:0 p.m.60 views

CVE-2009-3951

CVE-2009-3951 affects the Adobe Flash Player ActiveX control and Adobe AIR on Windows. It allows remote attackers to obtain the names of local files due to an incomplete fix for CVE-2008-4820, before versions Flash Player for Windows 10.0.42.34 and AIR 1.5.3. Practically, exploitation would revea...

7.1CVSS7.4AI score0.03806EPSS
CVE
CVE
added 2013/05/16 10:0 a.m.60 views

CVE-2013-3331

Adobe Flash Player and Adobe AIR are affected by CVE-2013-3331, with multiple platform-specific version ranges vulnerable to arbitrary code execution or memory corruption via unspecified vectors. Affected Flash Player versions: before 10.3.183.86 and 11.x before 11.7.700.202 on Windows/Mac; befor...

10CVSS7.7AI score0.05319EPSS
CVE
CVE
added 2014/08/12 10:0 p.m.60 views

CVE-2014-0544

Concrete details exist in connected advisories: CVE-2014-0544 is tied to Adobe Flash Player memory leakage (APSB14-18). The vulnerability is described as an error in parsing a specially crafted SWF file that can lead to memory leakage, enabling remote exploitation if a user opens the crafted SWF....

10CVSS6.3AI score0.03978EPSS
CVE
CVE
added 2013/05/16 10:0 a.m.57 views

CVE-2013-3334

Technical details about CVE-2013-3334 are not publicly available in the provided connected documents. The EUVD entries reference malware but do not specify affected products, root causes, or fixes for this CVE. Monitor for updates.

10CVSS7.7AI score0.0539EPSS
Total number of security vulnerabilities146