10

CVE-2014-0557

Adobe Flash Player before 13.0.0.244 and 14.x and 15.x before 15.0.0.152 on Windows and OS X and before 11.2.202.406 on Linux, Adobe AIR before 15.0.0.249 on Windows and OS X and before 15.0.0.252 on Android, Adobe AIR SDK before 15.0.0.249, and Adobe AIR SDK & Compiler before 15.0.0.249 do not properly restrict discovery of memory addresses, which allows attackers to bypass the ASLR protection mechanism via unspecified vectors.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)
AdobeFlash Player Version <= 11.2.202.400
   LinuxLinux Kernel
AdobeFlash Player Version11.2.202.223
   LinuxLinux Kernel
AdobeFlash Player Version11.2.202.228
   LinuxLinux Kernel
AdobeFlash Player Version11.2.202.233
   LinuxLinux Kernel
AdobeFlash Player Version11.2.202.235
   LinuxLinux Kernel
AdobeFlash Player Version11.2.202.236
   LinuxLinux Kernel
AdobeFlash Player Version11.2.202.238
   LinuxLinux Kernel
AdobeFlash Player Version11.2.202.243
   LinuxLinux Kernel
AdobeFlash Player Version11.2.202.251
   LinuxLinux Kernel
AdobeFlash Player Version11.2.202.258
   LinuxLinux Kernel
AdobeFlash Player Version11.2.202.261
   LinuxLinux Kernel
AdobeFlash Player Version11.2.202.262
   LinuxLinux Kernel
AdobeFlash Player Version11.2.202.270
   LinuxLinux Kernel
AdobeFlash Player Version11.2.202.273
   LinuxLinux Kernel
AdobeFlash Player Version11.2.202.275
   LinuxLinux Kernel
AdobeFlash Player Version11.2.202.280
   LinuxLinux Kernel
AdobeFlash Player Version11.2.202.285
   LinuxLinux Kernel
AdobeFlash Player Version11.2.202.291
   LinuxLinux Kernel
AdobeFlash Player Version11.2.202.297
   LinuxLinux Kernel
AdobeFlash Player Version11.2.202.310
   LinuxLinux Kernel
AdobeFlash Player Version11.2.202.332
   LinuxLinux Kernel
AdobeFlash Player Version11.2.202.335
   LinuxLinux Kernel
AdobeFlash Player Version11.2.202.336
   LinuxLinux Kernel
AdobeFlash Player Version11.2.202.341
   LinuxLinux Kernel
AdobeFlash Player Version11.2.202.346
   LinuxLinux Kernel
AdobeFlash Player Version11.2.202.350
   LinuxLinux Kernel
AdobeFlash Player Version11.2.202.356
   LinuxLinux Kernel
AdobeFlash Player Version11.2.202.359
   LinuxLinux Kernel
AdobeFlash Player Version11.2.202.378
   LinuxLinux Kernel
AdobeFlash Player Version11.2.202.394
   LinuxLinux Kernel
AdobeFlash Player Version <= 13.0.0.241
   ApplemacOS X
   MicrosoftWindows
AdobeFlash Player Version13.0.0.182
   ApplemacOS X
   MicrosoftWindows
AdobeFlash Player Version13.0.0.201
   ApplemacOS X
   MicrosoftWindows
AdobeFlash Player Version13.0.0.206
   ApplemacOS X
   MicrosoftWindows
AdobeFlash Player Version13.0.0.214
   ApplemacOS X
   MicrosoftWindows
AdobeFlash Player Version13.0.0.223
   ApplemacOS X
   MicrosoftWindows
AdobeFlash Player Version13.0.0.231
   ApplemacOS X
   MicrosoftWindows
AdobeFlash Player Version14.0.0.125
   ApplemacOS X
   MicrosoftWindows
AdobeFlash Player Version14.0.0.145
   ApplemacOS X
   MicrosoftWindows
AdobeFlash Player Version14.0.0.176
   ApplemacOS X
   MicrosoftWindows
AdobeFlash Player Version14.0.0.179
   ApplemacOS X
   MicrosoftWindows
AdobeFlash Player Version15.0.0.144
   ApplemacOS X
   MicrosoftWindows
AdobeAdobe Air Sdk Version <= 14.0.0.178
AdobeAdobe Air Sdk Version13.0.0.83
AdobeAdobe Air Sdk Version13.0.0.111
AdobeAdobe Air Sdk Version14.0.0.110
AdobeAdobe Air Sdk Version14.0.0.137
AdobeAdobe Air Version <= 14.0.0.178
   ApplemacOS X
   MicrosoftWindows
AdobeAdobe Air Version13.0.0.83
   ApplemacOS X
   MicrosoftWindows
AdobeAdobe Air Version13.0.0.111
   ApplemacOS X
   MicrosoftWindows
AdobeAdobe Air Version14.0.0.110
   ApplemacOS X
   MicrosoftWindows
AdobeAdobe Air Version14.0.0.137
   ApplemacOS X
   MicrosoftWindows
AdobeAdobe Air Version <= 14.0.0.179
   GoogleAndroid
AdobeAdobe Air Version13.0.0.83
   GoogleAndroid
AdobeAdobe Air Version13.0.0.111
   GoogleAndroid
AdobeAdobe Air Version14.0.0.110
   GoogleAndroid
AdobeAdobe Air Version14.0.0.137
   GoogleAndroid
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 2.7% 0.847
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 10 10 10
AV:N/AC:L/Au:N/C:C/I:C/A:C