5.8

CVE-2009-0114

EPSS 18.7%
Published 26.02.2009 16:17:19
Last modified 09.04.2025 00:30:58
Source cve@mitre.org
Teams watchlist Login
Open Login

Unspecified vulnerability in the Settings Manager in Adobe Flash Player 9.x before 9.0.159.0 and 10.x before 10.0.22.87, and possibly other versions, allows remote attackers to trick a user into visiting an arbitrary URL via unknown vectors, related to "a potential Clickjacking issue variant."

Affected products Warnungen 0 Metrics 2 CWE 0 References 20

Data is provided by the National Vulnerability Database (NVD)

Adobe ≫ Air Version1.5

Microsoft ≫ Windows

Adobe ≫ Flash Player Version <= 10.0.12.36

Microsoft ≫ Windows

Adobe ≫ Flash Player Version7.0

Microsoft ≫ Windows

Adobe ≫ Flash Player Version7.0.1

Microsoft ≫ Windows

Adobe ≫ Flash Player Version7.0.25

Microsoft ≫ Windows

Adobe ≫ Flash Player Version7.0.63

Microsoft ≫ Windows

Adobe ≫ Flash Player Version7.0.63 Editionlinux

Microsoft ≫ Windows

Adobe ≫ Flash Player Version7.0.69.0

Microsoft ≫ Windows

Adobe ≫ Flash Player Version7.0.70.0

Microsoft ≫ Windows

Adobe ≫ Flash Player Version7.1

Microsoft ≫ Windows

Adobe ≫ Flash Player Version7.1.1

Microsoft ≫ Windows

Adobe ≫ Flash Player Version7.2

Microsoft ≫ Windows

Adobe ≫ Flash Player Version8.0

Microsoft ≫ Windows

Adobe ≫ Flash Player Version8.0 Editionbasic

Microsoft ≫ Windows

Adobe ≫ Flash Player Version8.0 Editionpro

Microsoft ≫ Windows

Adobe ≫ Flash Player Version8.0.24.0

Microsoft ≫ Windows

Adobe ≫ Flash Player Version8.0.34.0

Microsoft ≫ Windows

Adobe ≫ Flash Player Version8.0.35.0

Microsoft ≫ Windows

Adobe ≫ Flash Player Version8.0.39.0

Microsoft ≫ Windows

Adobe ≫ Flash Player Version9.0.16

Microsoft ≫ Windows

Adobe ≫ Flash Player Version9.0.20

Microsoft ≫ Windows

Adobe ≫ Flash Player Version9.0.20.0

Microsoft ≫ Windows

Adobe ≫ Flash Player Version9.0.28

Microsoft ≫ Windows

Adobe ≫ Flash Player Version9.0.28.0

Microsoft ≫ Windows

Adobe ≫ Flash Player Version9.0.31.0

Microsoft ≫ Windows

Adobe ≫ Flash Player Version9.0.45.0

Microsoft ≫ Windows

Adobe ≫ Flash Player Version9.0.47.0

Microsoft ≫ Windows

Adobe ≫ Flash Player Version9.0.48.0

Microsoft ≫ Windows

Adobe ≫ Flash Player Version9.0.112.0

Microsoft ≫ Windows

Adobe ≫ Flash Player Version9.0.114.0

Microsoft ≫ Windows

Adobe ≫ Flash Player Version9.0.115.0

Microsoft ≫ Windows

Adobe ≫ Flash Player Version9.0.124.0

Microsoft ≫ Windows

Adobe ≫ Flash Player Version10.0.0.584

Microsoft ≫ Windows

Adobe ≫ Flash Player Version10.0.12.10

Microsoft ≫ Windows

Adobe ≫ Flash Player Versioncs3 Editionpro

Microsoft ≫ Windows

Adobe ≫ Flash Player Versioncs4 Editionpro

Microsoft ≫ Windows

Adobe ≫ Flash Player For Linux Version <= 10.0.15.3

Microsoft ≫ Windows

Adobe ≫ Flex Version3.0

Microsoft ≫ Windows

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	18.7%	0.95

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5.8	8.6	4.9	AV:N/AC:M/Au:N/C:N/I:P/A:P

http://lists.apple.com/archives/security-announce/2009/May/msg00002.html

http://secunia.com/advisories/35074

http://support.apple.com/kb/HT3549

http://www.us-cert.gov/cas/techalerts/TA09-133A.html

US Government Resource

http://www.vupen.com/english/advisories/2009/1297

http://secunia.com/advisories/34226

http://security.gentoo.org/glsa/glsa-200903-23.xml

http://isc.sans.org/diary.html?storyid=5929

http://secunia.com/advisories/34293

http://securitytracker.com/id?1021751

http://sunsolve.sun.com/search/document.do?assetkey=1-66-254909-1

http://www.adobe.com/support/security/bulletins/apsb09-01.html

Patch

Vendor Advisory

http://www.vupen.com/english/advisories/2009/0513

Patch

http://www.vupen.com/english/advisories/2009/0743

https://exchange.xforce.ibmcloud.com/vulnerabilities/48902

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16419

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6662

https://nvd.nist.gov/vuln/detail/CVE-2009-0114

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2009-0114

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2009-0114

EUVD