CVE-2014-0501

EPSS 24.48%
Published 12.02.2014 04:50:41
Last modified 11.04.2025 00:51:21
Source psirt@adobe.com
Teams watchlist Login
Open Login

Adobe Shockwave Player before 12.0.9.149 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-0500.

Affected products Warnungen 0 Metrics 2 CWE 1 References 9

Data is provided by the National Vulnerability Database (NVD)

Adobe ≫ Shockwave Player Version <= 12.0.7.148

Adobe ≫ Shockwave Player Version11.0.0.456

Adobe ≫ Shockwave Player Version11.0.3.471

Adobe ≫ Shockwave Player Version11.5.0.595

Adobe ≫ Shockwave Player Version11.5.0.596

Adobe ≫ Shockwave Player Version11.5.1.601

Adobe ≫ Shockwave Player Version11.5.2.602

Adobe ≫ Shockwave Player Version11.5.6.606

Adobe ≫ Shockwave Player Version11.5.7.609

Adobe ≫ Shockwave Player Version11.5.8.612

Adobe ≫ Shockwave Player Version11.5.9.615

Adobe ≫ Shockwave Player Version11.5.9.620

Adobe ≫ Shockwave Player Version11.5.10.620

Adobe ≫ Shockwave Player Version11.6.0.626

Adobe ≫ Shockwave Player Version11.6.1.629

Adobe ≫ Shockwave Player Version11.6.3.633

Adobe ≫ Shockwave Player Version11.6.4.634

Adobe ≫ Shockwave Player Version11.6.5.635

Adobe ≫ Shockwave Player Version11.6.6.636

Adobe ≫ Shockwave Player Version11.6.7.637

Adobe ≫ Shockwave Player Version11.6.8.638

Adobe ≫ Shockwave Player Version12.0.0.112

Adobe ≫ Shockwave Player Version12.0.2.122

Adobe ≫ Shockwave Player Version12.0.3.133

Adobe ≫ Shockwave Player Version12.0.4.144

Adobe ≫ Shockwave Player Version12.0.6.147

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	24.48%	0.959

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	10	10	10	AV:N/AC:L/Au:N/C:C/I:C/A:C

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

http://helpx.adobe.com/security/products/shockwave/apsb14-06.html

Vendor Advisory

http://secunia.com/advisories/56740

http://www.securitytracker.com/id/1029740

http://osvdb.org/103158

http://www.securityfocus.com/bid/65493

https://exchange.xforce.ibmcloud.com/vulnerabilities/91008

https://nvd.nist.gov/vuln/detail/CVE-2014-0501

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2014-0501

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2014-0501

EUVD