Flash Player@11.0 Security Vulnerabilities and Issues — Flash Player@11.0 CVE List

Lucene search

AdobeFlash Player11.0

38 matches found

CVE•added 2014/12/10 9:59 p.m.•889 views

CVE-2014-9163

Stack-based buffer overflow in Adobe Flash Player before 13.0.0.259 and 14.x and 15.x before 15.0.0.246 on Windows and OS X and before 11.2.202.425 on Linux allows attackers to execute arbitrary code via unspecified vectors, as exploited in the wild in December 2014.

10CVSS7.9AI score0.12835EPSS

In wild

CVE•added 2014/04/29 10:37 a.m.•94 views

CVE-2014-0515

Buffer overflow in Adobe Flash Player before 11.7.700.279 and 11.8.x through 13.0.x before 13.0.0.206 on Windows and OS X, and before 11.2.202.356 on Linux, allows remote attackers to execute arbitrary code via unspecified vectors, as exploited in the wild in April 2014.

10CVSS7.9AI score0.92641EPSS

CVE•added 2014/05/14 11:13 a.m.•92 views

CVE-2014-0516

Adobe Flash Player before 13.0.0.214 on Windows and OS X and before 11.2.202.359 on Linux, Adobe AIR SDK before 13.0.0.111, and Adobe AIR SDK & Compiler before 13.0.0.111 allow remote attackers to bypass the Same Origin Policy via unspecified vectors.

7.5CVSS6.5AI score0.01299EPSS

CVE•added 2014/11/11 11:55 p.m.•85 views

CVE-2014-0576

Adobe Flash Player before 13.0.0.252 and 14.x and 15.x before 15.0.0.223 on Windows and OS X and before 11.2.202.418 on Linux, Adobe AIR before 15.0.0.356, Adobe AIR SDK before 15.0.0.356, and Adobe AIR SDK & Compiler before 15.0.0.356 allow attackers to execute arbitrary code or cause a denial of ...

10CVSS7.7AI score0.88009EPSS

CVE•added 2014/01/15 4:13 p.m.•82 views

CVE-2014-0491

Adobe Flash Player before 11.7.700.260 and 11.8.x and 11.9.x before 12.0.0.38 on Windows and Mac OS X and before 11.2.202.335 on Linux, Adobe AIR before 4.0.0.1390, Adobe AIR SDK before 4.0.0.1390, and Adobe AIR SDK & Compiler before 4.0.0.1390 allow attackers to bypass unspecified protection mecha...

10CVSS6.4AI score0.02208EPSS

CVE•added 2014/02/21 5:7 a.m.•78 views

CVE-2014-0499

Adobe Flash Player before 11.7.700.269 and 11.8.x through 12.0.x before 12.0.0.70 on Windows and Mac OS X and before 11.2.202.341 on Linux, Adobe AIR before 4.0.0.1628 on Android, Adobe AIR SDK before 4.0.0.1628, and Adobe AIR SDK & Compiler before 4.0.0.1628 do not prevent access to address inform...

7.8CVSS6.5AI score0.00865EPSS

CVE•added 2014/04/08 11:55 p.m.•78 views

CVE-2014-0508

Adobe Flash Player before 11.7.700.275 and 11.8.x through 13.0.x before 13.0.0.182 on Windows and OS X and before 11.2.202.350 on Linux, Adobe AIR before 13.0.0.83 on Android, Adobe AIR SDK before 13.0.0.83, and Adobe AIR SDK & Compiler before 13.0.0.83 allow attackers to bypass intended access res...

5CVSS6AI score0.01606EPSS

CVE•added 2014/11/11 11:55 p.m.•76 views

CVE-2014-8440

10CVSS7.7AI score0.88009EPSS

CVE•added 2014/04/08 11:55 p.m.•73 views

CVE-2014-0507

Buffer overflow in Adobe Flash Player before 11.7.700.275 and 11.8.x through 13.0.x before 13.0.0.182 on Windows and OS X and before 11.2.202.350 on Linux, Adobe AIR before 13.0.0.83 on Android, Adobe AIR SDK before 13.0.0.83, and Adobe AIR SDK & Compiler before 13.0.0.83 allows attackers to execut...

9.3CVSS7.7AI score0.04664EPSS

CVE•added 2014/01/15 4:13 p.m.•72 views

CVE-2014-0492

10CVSS6.3AI score0.03215EPSS

CVE•added 2014/02/21 5:6 a.m.•72 views

CVE-2014-0498

Stack-based buffer overflow in Adobe Flash Player before 11.7.700.269 and 11.8.x through 12.0.x before 12.0.0.70 on Windows and Mac OS X and before 11.2.202.341 on Linux, Adobe AIR before 4.0.0.1628 on Android, Adobe AIR SDK before 4.0.0.1628, and Adobe AIR SDK & Compiler before 4.0.0.1628 allows a...

10CVSS8AI score0.03255EPSS

CVE•added 2014/05/14 11:13 a.m.•72 views

CVE-2014-0520

Adobe Flash Player before 13.0.0.214 on Windows and OS X and before 11.2.202.359 on Linux, Adobe AIR SDK before 13.0.0.111, and Adobe AIR SDK & Compiler before 13.0.0.111 allow attackers to bypass intended access restrictions via unspecified vectors, a different vulnerability than CVE-2014-0517, CV...

7.5CVSS6.4AI score0.02029EPSS

CVE•added 2014/12/10 9:59 p.m.•72 views

CVE-2014-0587

Adobe Flash Player before 13.0.0.259 and 14.x through 16.x before 16.0.0.235 on Windows and OS X and before 11.2.202.425 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-9164.

10CVSS7.7AI score0.10803EPSS

CVE•added 2014/11/11 11:55 p.m.•71 views

CVE-2014-0574

Double free vulnerability in Adobe Flash Player before 13.0.0.252 and 14.x and 15.x before 15.0.0.223 on Windows and OS X and before 11.2.202.418 on Linux, Adobe AIR before 15.0.0.356, Adobe AIR SDK before 15.0.0.356, and Adobe AIR SDK & Compiler before 15.0.0.356 allows attackers to execute arbitr...

10CVSS7.4AI score0.11795EPSS

CVE•added 2014/04/08 11:55 p.m.•70 views

CVE-2014-0509

Cross-site scripting (XSS) vulnerability in Adobe Flash Player before 11.7.700.275 and 11.8.x through 13.0.x before 13.0.0.182 on Windows and OS X and before 11.2.202.350 on Linux, Adobe AIR before 13.0.0.83 on Android, Adobe AIR SDK before 13.0.0.83, and Adobe AIR SDK & Compiler before 13.0.0.83 a...

4.3CVSS5.6AI score0.00762EPSS

CVE•added 2014/11/11 11:55 p.m.•70 views

CVE-2014-0584

10CVSS7.3AI score0.15077EPSS

CVE•added 2014/12/10 9:59 p.m.•70 views

CVE-2014-9164

10CVSS7.7AI score0.10803EPSS

CVE•added 2014/11/11 11:55 p.m.•68 views

CVE-2014-0590

10CVSS7.3AI score0.15077EPSS

CVE•added 2014/05/14 11:13 a.m.•67 views

CVE-2014-0517

7.5CVSS6.4AI score0.02029EPSS

CVE•added 2014/11/11 11:55 p.m.•67 views

CVE-2014-0581

10CVSS7.7AI score0.88009EPSS

CVE•added 2014/12/10 9:59 p.m.•67 views

CVE-2014-9162

Adobe Flash Player before 13.0.0.259 and 14.x through 16.x before 16.0.0.235 on Windows and OS X and before 11.2.202.425 on Linux allows attackers to obtain sensitive information via unspecified vectors.

10CVSS5.8AI score0.01902EPSS

CVE•added 2014/11/11 11:55 p.m.•66 views

CVE-2014-0577

10CVSS7.3AI score0.15077EPSS

CVE•added 2014/11/11 11:55 p.m.•65 views

CVE-2014-0573

Use-after-free vulnerability in Adobe Flash Player before 13.0.0.252 and 14.x and 15.x before 15.0.0.223 on Windows and OS X and before 11.2.202.418 on Linux, Adobe AIR before 15.0.0.356, Adobe AIR SDK before 15.0.0.356, and Adobe AIR SDK & Compiler before 15.0.0.356 allows attackers to execute arb...

10CVSS7.4AI score0.08236EPSS

CVE•added 2014/11/11 11:55 p.m.•65 views

CVE-2014-8438

10CVSS7.4AI score0.08236EPSS

CVE•added 2014/03/12 5:15 a.m.•63 views

CVE-2014-0503

Adobe Flash Player before 11.7.700.272 and 11.8.x through 12.0.x before 12.0.0.77 on Windows and OS X, and before 11.2.202.346 on Linux, allows remote attackers to bypass the Same Origin Policy via unspecified vectors.

6.4CVSS6.6AI score0.00502EPSS

CVE•added 2014/05/14 11:13 a.m.•63 views

CVE-2014-0519

7.5CVSS6.4AI score0.02029EPSS

CVE•added 2014/11/11 11:55 p.m.•62 views

CVE-2014-0583

Heap-based buffer overflow in Adobe Flash Player before 13.0.0.252 and 14.x and 15.x before 15.0.0.223 on Windows and OS X and before 11.2.202.418 on Linux, Adobe AIR before 15.0.0.356, Adobe AIR SDK before 15.0.0.356, and Adobe AIR SDK & Compiler before 15.0.0.356 allows attackers to complete a tr...

7.5CVSS6.9AI score0.03252EPSS

CVE•added 2014/11/11 11:55 p.m.•62 views

CVE-2014-0585

10CVSS7.3AI score0.15077EPSS

CVE•added 2014/11/11 11:55 p.m.•61 views

CVE-2014-0586

10CVSS7.3AI score0.15077EPSS

CVE•added 2014/05/14 11:13 a.m.•60 views

CVE-2014-0518

7.5CVSS6.4AI score0.02029EPSS

CVE•added 2014/12/10 9:59 p.m.•60 views

CVE-2014-8443

Use-after-free vulnerability in Adobe Flash Player before 13.0.0.259 and 14.x through 16.x before 16.0.0.235 on Windows and OS X and before 11.2.202.425 on Linux allows attackers to execute arbitrary code via unspecified vectors.

10CVSS7.5AI score0.10924EPSS

CVE•added 2014/11/11 11:55 p.m.•59 views

CVE-2014-8441

10CVSS7.7AI score0.88009EPSS

CVE•added 2014/03/12 5:15 a.m.•57 views

CVE-2014-0504

Adobe Flash Player before 11.7.700.272 and 11.8.x through 12.0.x before 12.0.0.77 on Windows and OS X, and before 11.2.202.346 on Linux, allows attackers to read the clipboard via unspecified vectors.

5CVSS6.3AI score0.01253EPSS

CVE•added 2014/11/11 11:55 p.m.•57 views

CVE-2014-0588

10CVSS7.4AI score0.08236EPSS

CVE•added 2014/11/11 11:55 p.m.•57 views

CVE-2014-0589

10CVSS7.9AI score0.23401EPSS

CVE•added 2014/11/11 11:55 p.m.•54 views

CVE-2014-8442

7.5CVSS6.4AI score0.02581EPSS

CVE•added 2014/11/11 11:55 p.m.•53 views

CVE-2014-0582

10CVSS7.9AI score0.23401EPSS

CVE•added 2014/11/11 11:55 p.m.•53 views

CVE-2014-8437

Adobe Flash Player before 13.0.0.252 and 14.x and 15.x before 15.0.0.223 on Windows and OS X and before 11.2.202.418 on Linux, Adobe AIR before 15.0.0.356, Adobe AIR SDK before 15.0.0.356, and Adobe AIR SDK & Compiler before 15.0.0.356 allow remote attackers to discover session tokens via unspecifi...

5CVSS6.5AI score0.01944EPSS