Lucene search
K

35 matches found

CVE
CVE
added 2011/04/13 2:0 p.m.1030 views

CVE-2011-0611

CVE-2011-0611 affects Adobe Flash Player before 10.2.154.27 (Windows/macOS/Linux/Solaris) and 10.2.156.12 and earlier on Android, plus Authplay.dll in Reader/Acrobat components. The vulnerability allows remote attackers to execute arbitrary code or cause a denial of service via crafted Flash cont...

9.3CVSS8.8AI score0.9941EPSS
In wild
CVE
CVE
added 2014/02/21 2:0 a.m.238 views

CVE-2014-0502

CVE-2014-0502 is a double‑free vulnerability in Adobe Flash Player and related components that allows remote code execution. Affected products include Flash Player prior to 11.7.700.269 and 11.8.x up to 12.0.x before 12.0.0.70 on Windows/macOS, and before 11.2.202.341 on Linux, as well as Adobe A...

10CVSS7.8AI score0.24204EPSS
In wild
CVE
CVE
added 2012/03/28 7:0 p.m.182 views

CVE-2012-0773

The CVE-2012-0773 issue concerns the NetStream class in Adobe Flash Player and AIR. Affected components include Flash Player before 10.3.183.18 and 11.x before 11.2.202.223/228 on Windows, macOS, Linux; Solaris Flash Player before 10.3.183.18/11.x before 11.2.202.223; Android 2.x/3.x before 11.1....

9.3CVSS7.5AI score0.05476EPSS
CVE
CVE
added 2010/08/11 6:0 p.m.111 views

CVE-2010-0209

CVE-2010-0209 affects Adobe Flash Player before 9.0.280 and 10.x before 10.1.82.76, and Adobe AIR before 2.0.3. The vulnerability enables arbitrary code execution or memory corruption via unspecified vectors. Connected sources corroborate multiple advisories and patches surrounding this CVE, noti...

9.3CVSS9.7AI score0.0459EPSS
CVE
CVE
added 2014/05/14 10:0 a.m.105 views

CVE-2014-0516

CVE-2014-0516 refers to a Same Origin Policy bypass in Adobe Flash Player and AIR SDK components. Publicly affected versions include Windows/macOS Flash Player prior to 13.0.0.214 and Linux prior to 11.2.202.359, as well as AIR SDK prior to 13.0.0.111 and AIR SDK & Compiler prior to 13.0.0.111. T...

7.5CVSS6.5AI score0.03912EPSS
CVE
CVE
added 2010/08/11 6:0 p.m.98 views

CVE-2010-2215

CVE-2010-2215 is a click‑jacking vulnerability in Adobe Flash Player (and bundled Flash in AIR). The connected advisories/entries confirm the issue can trick a user into clicking a link or dialog, with remediation by upgrading Flash to fixed versions (for example, Flash Player 9.0.280.0 and relat...

4.3CVSS9.2AI score0.03849EPSS
CVE
CVE
added 2014/01/15 2:0 a.m.97 views

CVE-2014-0491

CVE-2014-0491 affects Adobe Flash Player (Windows/Mac/Linux) and Adobe AIR/SDK/Compiler. The vulnerability allows bypassing protection mechanisms via unknown vectors, leading to potential complete compromise of affected systems. The initial description notes unknown vectors and does not specify t...

10CVSS6.4AI score0.07117EPSS
CVE
CVE
added 2014/01/15 2:0 a.m.94 views

CVE-2014-0492

CVE-2014-0492 affects Adobe Flash Player and Adobe AIR components. The issue stems from an “address leak” that defeats ASLR, impacting Flash Player prior to 11.7.700.260 and 11.8.x and 11.9.x before 12.0.0.38 on Windows/Mac, and prior to 11.2.202.335 on Linux, as well as Adobe AIR before 4.0.0.13...

10CVSS6.3AI score0.05691EPSS
CVE
CVE
added 2014/02/21 2:0 a.m.90 views

CVE-2014-0499

CVE-2014-0499 affects Adobe Flash Player (Windows, Mac OS X) and Adobe AIR/SDK components. The root cause is that these components do not prevent access to address information, aiding bypass of ASLR via unspecified vectors. Affected Flash Player versions include pre-11.7.700.269 and 11.8.x up to ...

7.8CVSS6.5AI score0.03712EPSS
CVE
CVE
added 2010/08/11 6:0 p.m.89 views

CVE-2010-2216

CVE-2010-2216 affects Adobe Flash Player prior to 9.0.280 and 10.x prior to 10.1.82.76, and Adobe AIR prior to 2.0.3. The description states that attackers can execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, and this is a distinct issue from CVE-20...

9.3CVSS9.7AI score0.0459EPSS
CVE
CVE
added 2010/08/11 6:0 p.m.88 views

CVE-2010-2214

CVE-2010-2214 affects Adobe Flash Player prior to 9.0.280 and 10.x prior to 10.1.82.76, and Adobe AIR prior to 2.0.3. The vulnerability allows arbitrary code execution or memory corruption via unspecified vectors and is described as a separate issue from CVE-2010-0209, CVE-2010-2213, and CVE-2010...

9.3CVSS9.7AI score0.0459EPSS
CVE
CVE
added 2010/08/11 6:0 p.m.87 views

CVE-2010-2213

CVE-2010-2213 describes a vulnerability in Adobe Flash Player (before 9.0.280 and 10.x before 10.1.82.76) and Adobe AIR before 2.0.3 , enabling attackers to execute arbitrary code or cause a memory corruption-based denial of service via unspecified vectors. The issue is confirmed across connected...

9.3CVSS9.7AI score0.0459EPSS
CVE
CVE
added 2014/05/14 10:0 a.m.86 views

CVE-2014-0520

CVE-2014-0520 is a security bypass vulnerability in Adobe Flash Player and AIR components. Affected are Flash Player versions prior to 13.0.0.214 (Windows/macOS) and prior to 11.2.202.359 (Linux), plus AIR SDK before 13.0.0.111 and AIR SDK & Compiler before 13.0.0.111. The issue stems from an err...

7.5CVSS6.4AI score0.04443EPSS
CVE
CVE
added 2014/02/21 2:0 a.m.84 views

CVE-2014-0498

CVE-2014-0498: A stack-based buffer overflow in Adobe Flash Player (and related AIR components) allows arbitrary code execution via unspecified vectors. Affected products/versions (per the initial description): Flash Player before 11.7.700.269 and 11.8.x up to 12.0.x before 12.0.0.70 on Windows a...

10CVSS8AI score0.07223EPSS
CVE
CVE
added 2013/03/13 10:0 a.m.83 views

CVE-2013-0646

CVE-2013-0646 technical details are not publicly provided in the supplied documents. No affected products, root cause, or fixes are confirmed here. Monitor for updates from the referenced advisories.

10CVSS7.7AI score0.06534EPSS
CVE
CVE
added 2014/05/14 10:0 a.m.80 views

CVE-2014-0517

Adobe Flash Player and AIR vulnerabilities (CVE-2014-0517) allow bypass of intended access restrictions in specific older builds: Flash Player before 13.0.0.214 (Windows/macOS) and before 11.2.202.359 (Linux), and AIR SDK before 13.0.0.111. The issue is described as a bypass via unspecified vecto...

7.5CVSS6.4AI score0.04443EPSS
CVE
CVE
added 2013/03/13 10:0 a.m.78 views

CVE-2013-0650

CVE-2013-0650 is a use-after-free vulnerability in Adobe Flash Player (Windows, macOS, Linux) and related AIR components that could allow arbitrary code execution via unspecified vectors. Affected versions include Flash Player before 10.3.183.68 and 11.x before 11.6.602.180 on Windows/Mac; before...

10CVSS7.4AI score0.06534EPSS
CVE
CVE
added 2013/03/13 10:0 a.m.78 views

CVE-2013-1375

CVE-2013-1375 describes a heap-based buffer overflow in Adobe Flash Player prior to certain 10.3/11.x revisions and Adobe AIR prior to 3.6.0.6090, allowing arbitrary code execution via unspecified vectors. The initial entry lists affected platforms (Windows, macOS, Linux, Android) and correspondi...

10CVSS7.9AI score0.09257EPSS
CVE
CVE
added 2013/05/16 10:0 a.m.77 views

CVE-2013-2728

CVE-2013-2728 concerns Adobe Flash Player (and AIR) with a memory-corruption based vulnerability that could allow arbitrary code execution or a denial of service via unspecified vectors. The initial description lists affected versions: Flash Player before 10.3.183.86 and 11.x before 11.7.700.202 ...

10CVSS7.7AI score0.05319EPSS
CVE
CVE
added 2014/05/14 10:0 a.m.74 views

CVE-2014-0519

CVE-2014-0519 describes a sandbox security bypass in Adobe Flash Player and AIR components. The flaw affects Flash Player pre-13.0.0.214 on Windows/macOS and pre-11.2.202.359 on Linux, plus AIR SDK before 13.0.0.111, enabling attackers to bypass access restrictions via crafted files opened by a u...

7.5CVSS6.4AI score0.04443EPSS
CVE
CVE
added 2014/05/14 10:0 a.m.72 views

CVE-2014-0518

Adobe Flash Player vulnerability CVE-2014-0518 (and related CVEs) allows bypass of intended access restrictions via unspecified vectors. Affected products/versions noted in the initial entry: Flash Player for Windows and macOS prior to 13.0.0.214, Flash Player for Linux prior to 11.2.202.359, Ado...

7.5CVSS6.4AI score0.04443EPSS
CVE
CVE
added 2013/03/13 10:0 a.m.71 views

CVE-2013-1371

Adobe Flash Player and related AIR components were vulnerable to arbitrary code execution or memory corruption via unspecified vectors (CVE-2013-1371). Affected versions included Flash Player before 10.3.183.68 and 11.x before 11.6.602.180 on Windows/macOS, before 10.3.183.68 and 11.x before 11.2...

10CVSS7.7AI score0.05141EPSS
CVE
CVE
added 2007/07/10 12:0 a.m.70 views

CVE-2007-3640

Adobe Integrated Runtime (AIR, also known as Apollo) is affected by CVE-2007-3640. The issue allows context-dependent attackers to modify arbitrary files inside an executing .air file (compiled AIR application) and perform cross-site scripting (XSS) attacks, demonstrated by an app that modifies a...

4.3CVSS5.5AI score0.02562EPSS
CVE
CVE
added 2013/05/16 10:0 a.m.70 views

CVE-2013-3332

Technical details are not publicly available in the provided documents. Monitor for updates from the sources; no specific affected products, versions, or fixes are disclosed here.

10CVSS7.7AI score0.05319EPSS
CVE
CVE
added 2013/05/16 10:0 a.m.69 views

CVE-2013-3327

Technical details for CVE-2013-3327 are not publicly available in the provided connected documents. Please monitor for updates from official advisories; current sources here reference multiple related CVEs but provide no implementation specifics.

10CVSS7.7AI score0.0539EPSS
CVE
CVE
added 2013/05/16 10:0 a.m.69 views

CVE-2013-3330

Technical details for CVE-2013-3330 are not publicly available in the provided connected documents; no affected products, exact vulnerability vectors, impact, or fixes are described here. Monitor for updates.

10CVSS7.7AI score0.05319EPSS
CVE
CVE
added 2013/05/16 10:0 a.m.68 views

CVE-2013-3325

Technical details for CVE-2013-3325 are not publicly available in the provided documents. The connected EUVD entries mention malware in sbrugna but do not specify affected product/version, root cause, impact, or remediation for this CVE. Monitor for updates.

10CVSS7.7AI score0.0539EPSS
CVE
CVE
added 2013/05/16 10:0 a.m.68 views

CVE-2013-3326

Technical details for CVE-2013-3326 are not publicly available in the provided connected documents; monitor for updates.

10CVSS7.7AI score0.0539EPSS
CVE
CVE
added 2013/05/16 10:0 a.m.68 views

CVE-2013-3333

Technical details for CVE-2013-3333 are not publicly available in the provided connected documents. Monitor for updates; no concrete product/version/impact data is disclosed here.

10CVSS7.7AI score0.0539EPSS
CVE
CVE
added 2013/05/16 10:0 a.m.65 views

CVE-2013-3324

Technical details for CVE-2013-3324 are not publicly available in the provided documents. Monitor for updates and gather future information from linked sources.

10CVSS7.7AI score0.0539EPSS
CVE
CVE
added 2013/05/16 10:0 a.m.63 views

CVE-2013-3328

Technical details about CVE-2013-3328 are not provided in the connected documents. The available sources do not disclose affected products, versions, roots, or fixes. Monitor for updates.

10CVSS7.7AI score0.0539EPSS
CVE
CVE
added 2013/05/16 10:0 a.m.63 views

CVE-2013-3335

Technical details for CVE-2013-3335 are not provided in the connected EUVD entries. The documents reference malware notes but do not specify vulnerability mechanics, affected products, or fixes. Monitor for updates from vendors/ENISA for concrete details.

10CVSS7.7AI score0.05319EPSS
CVE
CVE
added 2013/05/16 10:0 a.m.62 views

CVE-2013-3329

Technical details about CVE-2013-3329 are not publicly available in the provided documents; no product, version, impact or remediation information is included beyond the initial description. Monitor for updates.

10CVSS7.7AI score0.05319EPSS
CVE
CVE
added 2013/05/16 10:0 a.m.59 views

CVE-2013-3331

Adobe Flash Player and Adobe AIR are affected by CVE-2013-3331, with multiple platform-specific version ranges vulnerable to arbitrary code execution or memory corruption via unspecified vectors. Affected Flash Player versions: before 10.3.183.86 and 11.x before 11.7.700.202 on Windows/Mac; befor...

10CVSS7.7AI score0.05319EPSS
CVE
CVE
added 2013/05/16 10:0 a.m.56 views

CVE-2013-3334

Technical details about CVE-2013-3334 are not publicly available in the provided connected documents. The EUVD entries reference malware but do not specify affected products, root causes, or fixes for this CVE. Monitor for updates.

10CVSS7.7AI score0.0539EPSS