Flex Security Vulnerabilities and Issues — Flex CVE List

Lucene search

AdobeFlex

5 matches found

CVE•added 2009/07/31 7:30 p.m.•70 views

CVE-2009-1867

Adobe Flash Player before 9.0.246.0 and 10.x before 10.0.32.18, and Adobe AIR before 1.5.2, allows attackers to trick a user into (1) selecting a link or (2) completing a dialog, related to a "clickjacking vulnerability."

4.3CVSS7.3AI score0.00989EPSS

CVE•added 2009/02/26 4:17 p.m.•58 views

CVE-2009-0522

Adobe Flash Player 9.x before 9.0.159.0 and 10.x before 10.0.22.87 on Windows allows remote attackers to trick a user into visiting an arbitrary URL via an unspecified manipulation of the "mouse pointer display," related to a "Clickjacking attack."

4.3CVSS6.8AI score0.01908EPSS

CVE•added 2009/07/31 7:30 p.m.•58 views

CVE-2009-1870

Adobe Flash Player before 9.0.246.0 and 10.x before 10.0.32.18, and Adobe AIR before 1.5.2, allows attackers to obtain sensitive information via vectors involving saving an SWF file to a hard drive, related to a "local sandbox vulnerability."

4.9CVSS7.1AI score0.00188EPSS

CVE•added 2008/04/09 9:5 p.m.•56 views

CVE-2008-1655

Unspecified vulnerability in Adobe Flash Player 9.0.115.0 and earlier, and 8.0.39.0 and earlier, makes it easier for remote attackers to conduct DNS rebinding attacks via unknown vectors.

4.3CVSS6.3AI score0.30112EPSS

CVE•added 2008/06/18 7:41 p.m.•54 views

CVE-2008-2640

Multiple cross-site scripting (XSS) vulnerabilities in the Flex 3 History Management feature in Adobe Flex 3.0.1 SDK and Flex Builder 3, and generated applications, allow remote attackers to inject arbitrary web script or HTML via the anchor identifier to (1) client-side-detection-with-history/hist...

4.3CVSS5.8AI score0.01461EPSS