Adobe Air@* Security Vulnerabilities and Issues — Adobe Air@* CVE List

Lucene search

AdobeAdobe Air*

146 matches found

CVE•added 2011/04/13 2:55 p.m.•976 views

CVE-2011-0611

Adobe Flash Player before 10.2.154.27 on Windows, Mac OS X, Linux, and Solaris and 10.2.156.12 and earlier on Android; Adobe AIR before 2.6.19140; and Authplay.dll (aka AuthPlayLib.bundle) in Adobe Reader 9.x before 9.4.4 and 10.x through 10.0.1 on Windows, Adobe Reader 9.x before 9.4.4 and 10.x be...

9.3CVSS8.8AI score0.93736EPSS

CVE•added 2014/08/12 10:55 p.m.•214 views

CVE-2014-0543

Adobe Flash Player before 13.0.0.241 and 14.x before 14.0.0.176 on Windows and OS X and before 11.2.202.400 on Linux, Adobe AIR before 14.0.0.178 on Windows and OS X and before 14.0.0.179 on Android, Adobe AIR SDK before 14.0.0.178, and Adobe AIR SDK & Compiler before 14.0.0.178 do not properly res...

10CVSS6.3AI score0.00782EPSS

CVE•added 2014/02/21 5:7 a.m.•210 views

CVE-2014-0502

Double free vulnerability in Adobe Flash Player before 11.7.700.269 and 11.8.x through 12.0.x before 12.0.0.70 on Windows and Mac OS X and before 11.2.202.341 on Linux, Adobe AIR before 4.0.0.1628 on Android, Adobe AIR SDK before 4.0.0.1628, and Adobe AIR SDK & Compiler before 4.0.0.1628 allows rem...

10CVSS7.8AI score0.86341EPSS

CVE•added 2012/03/28 7:55 p.m.•159 views

CVE-2012-0773

The NetStream class in Adobe Flash Player before 10.3.183.18 and 11.x before 11.2.202.228 on Windows, Mac OS X, and Linux; Flash Player before 10.3.183.18 and 11.x before 11.2.202.223 on Solaris; Flash Player before 11.1.111.8 on Android 2.x and 3.x; and AIR before 3.2.0.2070 allows attackers to ex...

9.3CVSS7.5AI score0.01232EPSS

CVE•added 2012/10/09 11:13 a.m.•143 views

CVE-2012-5266

Buffer overflow in Adobe Flash Player before 10.3.183.29 and 11.x before 11.4.402.287 on Windows and Mac OS X, before 10.3.183.29 and 11.x before 11.2.202.243 on Linux, before 11.1.111.19 on Android 2.x and 3.x, and before 11.1.115.20 on Android 4.x; Adobe AIR before 3.4.0.2710; and Adobe AIR SDK b...

10CVSS7.9AI score0.06407EPSS

CVE•added 2012/10/09 11:13 a.m.•143 views

CVE-2012-5270

Adobe Flash Player before 10.3.183.29 and 11.x before 11.4.402.287 on Windows and Mac OS X, before 10.3.183.29 and 11.x before 11.2.202.243 on Linux, before 11.1.111.19 on Android 2.x and 3.x, and before 11.1.115.20 on Android 4.x; Adobe AIR before 3.4.0.2710; and Adobe AIR SDK before 3.4.0.2710 al...

10CVSS7.8AI score0.05955EPSS

CVE•added 2012/10/09 11:13 a.m.•141 views

CVE-2012-5269

10CVSS7.8AI score0.08103EPSS

CVE•added 2012/10/09 11:13 a.m.•140 views

CVE-2012-5267

10CVSS7.8AI score0.08103EPSS

CVE•added 2012/10/09 11:13 a.m.•140 views

CVE-2012-5271

10CVSS7.8AI score0.08103EPSS

CVE•added 2011/08/10 10:55 p.m.•128 views

CVE-2011-2140

Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and Solaris and before 10.3.186.3 on Android, and Adobe AIR before 2.7.1 on Windows and Mac OS X and before 2.7.1.1961 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspec...

10CVSS9AI score0.89835EPSS

CVE•added 2012/10/09 11:13 a.m.•128 views

CVE-2012-5268

10CVSS7.9AI score0.06135EPSS

CVE•added 2012/10/09 11:13 a.m.•127 views

CVE-2012-5272

10CVSS7.8AI score0.09943EPSS

CVE•added 2012/03/28 7:55 p.m.•125 views

CVE-2012-0772

An unspecified ActiveX control in Adobe Flash Player before 10.3.183.18 and 11.x before 11.2.202.228, and AIR before 3.2.0.2070, on Windows does not properly perform URL security domain checking, which allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via un...

10CVSS7.7AI score0.24398EPSS

CVE•added 2012/08/31 7:55 p.m.•114 views

CVE-2012-4171

Adobe Flash Player before 10.3.183.23 and 11.x before 11.4.402.265 on Windows and Mac OS X, before 10.3.183.23 and 11.x before 11.2.202.238 on Linux, before 11.1.111.16 on Android 2.x and 3.x, and before 11.1.115.17 on Android 4.x; Adobe AIR before 3.4.0.2540; and Adobe AIR SDK before 3.4.0.2540 al...

5CVSS6.3AI score0.01747EPSS

CVE•added 2010/08/11 6:47 p.m.•94 views

CVE-2010-0209

Adobe Flash Player before 9.0.280 and 10.x before 10.1.82.76, and Adobe AIR before 2.0.3, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2010-2213, CVE-2010-2214, and CVE-2010-2216.

9.3CVSS9.7AI score0.02297EPSS

CVE•added 2014/09/10 1:55 a.m.•94 views

CVE-2014-0559

Heap-based buffer overflow in Adobe Flash Player before 13.0.0.244 and 14.x and 15.x before 15.0.0.152 on Windows and OS X and before 11.2.202.406 on Linux, Adobe AIR before 15.0.0.249 on Windows and OS X and before 15.0.0.252 on Android, Adobe AIR SDK before 15.0.0.249, and Adobe AIR SDK & Compile...

10CVSS7.8AI score0.86438EPSS

CVE•added 2011/08/15 9:55 p.m.•93 views

CVE-2011-2424

Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and Solaris and before 10.3.186.3 on Android, and Adobe AIR before 2.7.1 on Windows and Mac OS X and before 2.7.1.1961 on Android, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via...

9.3CVSS8.8AI score0.13758EPSS

CVE•added 2014/05/14 11:13 a.m.•90 views

CVE-2014-0516

Adobe Flash Player before 13.0.0.214 on Windows and OS X and before 11.2.202.359 on Linux, Adobe AIR SDK before 13.0.0.111, and Adobe AIR SDK & Compiler before 13.0.0.111 allow remote attackers to bypass the Same Origin Policy via unspecified vectors.

7.5CVSS6.5AI score0.01299EPSS

CVE•added 2014/07/09 5:4 a.m.•86 views

CVE-2014-4671

Adobe Flash Player before 13.0.0.231 and 14.x before 14.0.0.145 on Windows and OS X and before 11.2.202.394 on Linux, Adobe AIR before 14.0.0.137 on Android, Adobe AIR SDK before 14.0.0.137, and Adobe AIR SDK & Compiler before 14.0.0.137 do not properly restrict the SWF file format, which allows re...

4.3CVSS6.5AI score0.35827EPSS

CVE•added 2014/09/10 1:55 a.m.•84 views

CVE-2014-0556

10CVSS8AI score0.86438EPSS

CVE•added 2014/09/10 1:55 a.m.•82 views

CVE-2014-0552

Adobe Flash Player before 13.0.0.244 and 14.x and 15.x before 15.0.0.152 on Windows and OS X and before 11.2.202.406 on Linux, Adobe AIR before 15.0.0.249 on Windows and OS X and before 15.0.0.252 on Android, Adobe AIR SDK before 15.0.0.249, and Adobe AIR SDK & Compiler before 15.0.0.249 allow atta...

10CVSS7.7AI score0.0558EPSS

CVE•added 2011/08/10 9:55 p.m.•81 views

CVE-2011-2130

Buffer overflow in Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and Solaris and before 10.3.186.3 on Android, and Adobe AIR before 2.7.1 on Windows and Mac OS X and before 2.7.1.1961 on Android, allows attackers to execute arbitrary code via unspecified vectors, a different vul...

10CVSS9AI score0.13356EPSS

CVE•added 2008/11/17 10:21 p.m.•80 views

CVE-2008-5108

Unspecified vulnerability in Adobe AIR 1.1 and earlier allows context-dependent attackers to execute untrusted JavaScript in an AIR application via unknown attack vectors.

6.8CVSS6.5AI score0.03868EPSS

CVE•added 2014/08/12 10:55 p.m.•80 views

CVE-2014-0545

10CVSS6.3AI score0.00782EPSS

CVE•added 2010/08/11 6:47 p.m.•79 views

CVE-2010-2215

Adobe Flash Player before 9.0.280 and 10.x before 10.1.82.76, and Adobe AIR before 2.0.3, allows attackers to trick a user into (1) selecting a link or (2) completing a dialog, related to a "click-jacking" issue.

4.3CVSS9.2AI score0.01802EPSS

CVE•added 2014/01/15 4:13 p.m.•79 views

CVE-2014-0491

Adobe Flash Player before 11.7.700.260 and 11.8.x and 11.9.x before 12.0.0.38 on Windows and Mac OS X and before 11.2.202.335 on Linux, Adobe AIR before 4.0.0.1390, Adobe AIR SDK before 4.0.0.1390, and Adobe AIR SDK & Compiler before 4.0.0.1390 allow attackers to bypass unspecified protection mecha...

10CVSS6.4AI score0.02208EPSS

CVE•added 2010/02/15 6:30 p.m.•76 views

CVE-2010-0186

Cross-domain vulnerability in Adobe Flash Player before 10.0.45.2, Adobe AIR before 1.5.3.9130, and Adobe Reader and Acrobat 8.x before 8.2.1 and 9.x before 9.3.1 allows remote attackers to bypass intended sandbox restrictions and make cross-domain requests via unspecified vectors.

6.8CVSS7.4AI score0.02923EPSS

CVE•added 2014/06/11 10:57 a.m.•76 views

CVE-2014-0534

Adobe Flash Player before 13.0.0.223 and 14.x before 14.0.0.125 on Windows and OS X and before 11.2.202.378 on Linux, Adobe AIR before 14.0.0.110, Adobe AIR SDK before 14.0.0.110, and Adobe AIR SDK & Compiler before 14.0.0.110 allow attackers to bypass intended access restrictions via unspecified v...

7.5CVSS6.5AI score0.06932EPSS

CVE•added 2010/08/11 6:47 p.m.•75 views

CVE-2010-2214

9.3CVSS9.7AI score0.02297EPSS

CVE•added 2011/11/11 4:55 p.m.•75 views

CVE-2011-2453

Adobe Flash Player before 10.3.183.11 and 11.x before 11.1.102.55 on Windows, Mac OS X, Linux, and Solaris and before 11.1.102.59 on Android, and Adobe AIR before 3.1.0.4880, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a diffe...

10CVSS9.7AI score0.01769EPSS

CVE•added 2014/04/08 11:55 p.m.•75 views

CVE-2014-0508

Adobe Flash Player before 11.7.700.275 and 11.8.x through 13.0.x before 13.0.0.182 on Windows and OS X and before 11.2.202.350 on Linux, Adobe AIR before 13.0.0.83 on Android, Adobe AIR SDK before 13.0.0.83, and Adobe AIR SDK & Compiler before 13.0.0.83 allow attackers to bypass intended access res...

5CVSS6AI score0.01606EPSS

CVE•added 2010/08/11 6:47 p.m.•74 views

CVE-2010-2213

9.3CVSS9.7AI score0.02297EPSS

CVE•added 2011/08/10 10:55 p.m.•74 views

CVE-2011-2425

10CVSS9AI score0.89835EPSS

CVE•added 2011/08/10 10:55 p.m.•73 views

CVE-2011-2135

10CVSS9AI score0.89835EPSS

CVE•added 2014/02/21 5:7 a.m.•73 views

CVE-2014-0499

Adobe Flash Player before 11.7.700.269 and 11.8.x through 12.0.x before 12.0.0.70 on Windows and Mac OS X and before 11.2.202.341 on Linux, Adobe AIR before 4.0.0.1628 on Android, Adobe AIR SDK before 4.0.0.1628, and Adobe AIR SDK & Compiler before 4.0.0.1628 do not prevent access to address inform...

7.8CVSS6.5AI score0.00865EPSS

CVE•added 2010/08/11 6:47 p.m.•72 views

CVE-2010-2216

9.3CVSS9.7AI score0.02297EPSS

CVE•added 2011/08/10 10:55 p.m.•72 views

CVE-2011-2417

10CVSS9AI score0.89835EPSS

CVE•added 2014/06/11 10:57 a.m.•72 views

CVE-2014-0531

Cross-site scripting (XSS) vulnerability in Adobe Flash Player before 13.0.0.223 and 14.x before 14.0.0.125 on Windows and OS X and before 11.2.202.378 on Linux, Adobe AIR before 14.0.0.110, Adobe AIR SDK before 14.0.0.110, and Adobe AIR SDK & Compiler before 14.0.0.110 allows remote attackers to i...

4.3CVSS5.6AI score0.03466EPSS

CVE•added 2014/07/09 5:4 a.m.•72 views

CVE-2014-0539

Adobe Flash Player before 13.0.0.231 and 14.x before 14.0.0.145 on Windows and OS X and before 11.2.202.394 on Linux, Adobe AIR before 14.0.0.137 on Android, Adobe AIR SDK before 14.0.0.137, and Adobe AIR SDK & Compiler before 14.0.0.137 allow attackers to bypass intended access restrictions via un...

7.5CVSS6.5AI score0.02759EPSS

CVE•added 2012/10/09 11:13 a.m.•71 views

CVE-2012-5256

10CVSS7.8AI score0.06135EPSS

CVE•added 2014/06/11 10:57 a.m.•71 views

CVE-2014-0533

4.3CVSS5.6AI score0.03466EPSS

CVE•added 2011/08/10 9:55 p.m.•70 views

CVE-2011-2134

10CVSS9AI score0.13356EPSS

CVE•added 2014/04/08 11:55 p.m.•70 views

CVE-2014-0507

Buffer overflow in Adobe Flash Player before 11.7.700.275 and 11.8.x through 13.0.x before 13.0.0.182 on Windows and OS X and before 11.2.202.350 on Linux, Adobe AIR before 13.0.0.83 on Android, Adobe AIR SDK before 13.0.0.83, and Adobe AIR SDK & Compiler before 13.0.0.83 allows attackers to execut...

9.3CVSS7.7AI score0.0495EPSS

CVE•added 2014/05/14 11:13 a.m.•70 views

CVE-2014-0520

Adobe Flash Player before 13.0.0.214 on Windows and OS X and before 11.2.202.359 on Linux, Adobe AIR SDK before 13.0.0.111, and Adobe AIR SDK & Compiler before 13.0.0.111 allow attackers to bypass intended access restrictions via unspecified vectors, a different vulnerability than CVE-2014-0517, CV...

7.5CVSS6.4AI score0.02029EPSS

CVE•added 2014/06/11 10:57 a.m.•70 views

CVE-2014-0532

4.3CVSS5.6AI score0.03466EPSS

CVE•added 2010/02/15 6:30 p.m.•69 views

CVE-2010-0187

Adobe Flash Player before 10.0.45.2 and Adobe AIR before 1.5.3.9130 allow remote attackers to cause a denial of service (application crash) via a modified SWF file.

4.3CVSS7.2AI score0.41655EPSS

CVE•added 2014/10/15 10:55 a.m.•69 views

CVE-2014-0558

Adobe Flash Player before 13.0.0.250 and 14.x and 15.x before 15.0.0.189 on Windows and OS X and before 11.2.202.411 on Linux, Adobe AIR before 15.0.0.293, Adobe AIR SDK before 15.0.0.302, and Adobe AIR SDK & Compiler before 15.0.0.302 allow attackers to execute arbitrary code or cause a denial of ...

10CVSS7.7AI score0.15429EPSS

CVE•added 2011/08/10 10:55 p.m.•68 views

CVE-2011-2414

10CVSS9AI score0.13356EPSS

CVE•added 2011/08/10 10:55 p.m.•68 views

CVE-2011-2416

Integer overflow in Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and Solaris and before 10.3.186.3 on Android, and Adobe AIR before 2.7.1 on Windows and Mac OS X and before 2.7.1.1961 on Android, allows attackers to execute arbitrary code via unspecified vectors, a different vu...

10CVSS9AI score0.04528EPSS

CVE•added 2011/11/11 4:55 p.m.•68 views

CVE-2011-2454

10CVSS9.7AI score0.01769EPSS

Total number of security vulnerabilities146