Air Security Vulnerabilities and Issues — Page 5 of Air CVE List

10CVSS9.1AI score0.13403EPSS

CVE-2015-8047

Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allow attackers to execute arbitrary code or cause a denial of ...

CVE-2015-8405

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allows attackers to execute arb...

10CVSS9AI score0.08757EPSS

CVE-2015-8407

Stack-based buffer overflow in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allows attackers to execute arbi...

CVE-2015-8411

10CVSS9.1AI score0.13403EPSS

CVE-2015-8416

CVE-2015-8422

CVE-2015-8435

9.3CVSS9AI score0.60453EPSS

CVE-2015-8437

Use-after-free vulnerability in the Selection object implementation in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20....

CVE-2015-8441

9.3CVSS8.8AI score0.06287EPSS

CVE-2015-8445

Integer overflow in the Shader filter implementation in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allows ...

9.3CVSS9AI score0.60453EPSS

CVE-2015-8449

Use-after-free vulnerability in the MovieClip object implementation in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20....

CVE-2015-8452

CVE•added 2015/12/28 11:59 p.m.•70 views

CVE-2015-8645

Adobe Flash Player before 18.0.0.324 and 19.x and 20.x before 20.0.0.267 on Windows and OS X and before 11.2.202.559 on Linux, Adobe AIR before 20.0.0.233, Adobe AIR SDK before 20.0.0.233, and Adobe AIR SDK & Compiler before 20.0.0.233 allow attackers to execute arbitrary code or cause a denial of ...

9.3CVSS9.5AI score0.41991EPSS

CVE•added 2016/03/12 3:59 p.m.•70 views

CVE-2016-0994

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21.0.0.182 on Windows and OS X and before 11.2.202.577 on Linux, Adobe AIR before 21.0.0.176, Adobe AIR SDK before 21.0.0.176, and Adobe AIR SDK & Compiler before 21.0.0.176 allows attackers to execute...

9.3CVSS8.9AI score0.50072EPSS

CVE•added 2016/03/12 3:59 p.m.•70 views

CVE-2016-0996

Use-after-free vulnerability in the setInterval method in Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21.0.0.182 on Windows and OS X and before 11.2.202.577 on Linux, Adobe AIR before 21.0.0.176, Adobe AIR SDK before 21.0.0.176, and Adobe AIR SDK & Compiler before 21.0.0.176 a...

9.3CVSS8.9AI score0.50072EPSS

9.3CVSS9.6AI score0.02671EPSS

CVE-2009-3793

Unspecified vulnerability in Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows attackers to cause a denial of service (memory consumption) or possibly execute arbitrary code via unknown vectors.

9.3CVSS9.5AI score0.00663EPSS

CVE-2010-2164

Use-after-free vulnerability in Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, might allow attackers to execute arbitrary code via unspecified vectors related to an unspecified "image type within a certain function."

9.3CVSS9.6AI score0.00819EPSS

CVE-2010-2167

Multiple heap-based buffer overflows in Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, might allow attackers to execute arbitrary code via unspecified vectors related to malformed (1) GIF or (2) JPEG data.

9.3CVSS9.7AI score0.00491EPSS

CVE-2010-2169

Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allow attackers to cause a denial of service (pointer memory corruption) or possibly execute arbitrary code via unspecified vectors.

9.3CVSS9.7AI score0.01642EPSS

CVE-2010-2170

Integer overflow in Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, might allow attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-2181 and CVE-2010-2183.

9.3CVSS9.7AI score0.01642EPSS

CVE-2010-2181

9.3CVSS9.6AI score0.00899EPSS

CVE-2010-2186

Unspecified vulnerability in Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows attackers to cause a denial of service (application crash) or possibly execute arbitrary code via unknown vectors.

CVE•added 2013/02/12 8:55 p.m.•69 views

CVE-2013-1372

Buffer overflow in Adobe Flash Player before 10.3.183.63 and 11.x before 11.6.602.168 on Windows, before 10.3.183.61 and 11.x before 11.6.602.167 on Mac OS X, before 10.3.183.61 and 11.x before 11.2.202.270 on Linux, before 11.1.111.43 on Android 2.x and 3.x, and before 11.1.115.47 on Android 4.x; ...

10CVSS7.7AI score0.04189EPSS

CVE•added 2014/11/11 11:55 p.m.•69 views

CVE-2014-0581

Adobe Flash Player before 13.0.0.252 and 14.x and 15.x before 15.0.0.223 on Windows and OS X and before 11.2.202.418 on Linux, Adobe AIR before 15.0.0.356, Adobe AIR SDK before 15.0.0.356, and Adobe AIR SDK & Compiler before 15.0.0.356 allow attackers to execute arbitrary code or cause a denial of ...

10CVSS7.7AI score0.88009EPSS

CVE•added 2015/05/13 11:0 a.m.•69 views

CVE-2015-3079

Adobe Flash Player before 13.0.0.289 and 14.x through 17.x before 17.0.0.188 on Windows and OS X and before 11.2.202.460 on Linux, Adobe AIR before 17.0.0.172, Adobe AIR SDK before 17.0.0.172, and Adobe AIR SDK & Compiler before 17.0.0.172 allow attackers to bypass intended access restrictions and ...

5CVSS6AI score0.01007EPSS

CVE•added 2015/06/10 1:59 a.m.•69 views

CVE-2015-3099

Adobe Flash Player before 13.0.0.292 and 14.x through 18.x before 18.0.0.160 on Windows and OS X and before 11.2.202.466 on Linux, Adobe AIR before 18.0.0.144 on Windows and before 18.0.0.143 on OS X and Android, Adobe AIR SDK before 18.0.0.144 on Windows and before 18.0.0.143 on OS X, and Adobe AI...

5CVSS6.5AI score0.00583EPSS

CVE•added 2015/06/10 1:59 a.m.•69 views

CVE-2015-3102

5CVSS6.5AI score0.00583EPSS

CVE•added 2015/07/09 4:59 p.m.•69 views

CVE-2015-3126

Adobe Flash Player before 13.0.0.302 and 14.x through 18.x before 18.0.0.203 on Windows and OS X and before 11.2.202.481 on Linux, Adobe AIR before 18.0.0.180, Adobe AIR SDK before 18.0.0.180, and Adobe AIR SDK & Compiler before 18.0.0.180 allow attackers to cause a denial of service (NULL pointer ...

7.5CVSS7.2AI score0.03219EPSS

CVE•added 2015/07/09 4:59 p.m.•69 views

CVE-2015-4430

10CVSS7.5AI score0.68245EPSS

CVE•added 2015/08/14 1:59 a.m.•69 views

CVE-2015-5125

Adobe Flash Player before 18.0.0.232 on Windows and OS X and before 11.2.202.508 on Linux, Adobe AIR before 18.0.0.199, Adobe AIR SDK before 18.0.0.199, and Adobe AIR SDK & Compiler before 18.0.0.199 allow attackers to cause a denial of service (vector-length corruption) or possibly have unspecifie...

10CVSS7.1AI score0.05281EPSS

CVE•added 2015/08/14 1:59 a.m.•69 views

CVE-2015-5130

10CVSS7.7AI score0.65898EPSS

CVE•added 2015/08/14 1:59 a.m.•69 views

CVE-2015-5556

10CVSS7.7AI score0.65898EPSS

CVE-2015-8403

CVE-2015-8410

CVE-2015-8413

10CVSS9.1AI score0.13403EPSS

CVE-2015-8419

CVE-2015-8433