10

CVE-2014-8440

Exploit

Adobe Flash Player before 13.0.0.252 and 14.x and 15.x before 15.0.0.223 on Windows and OS X and before 11.2.202.418 on Linux, Adobe AIR before 15.0.0.356, Adobe AIR SDK before 15.0.0.356, and Adobe AIR SDK & Compiler before 15.0.0.356 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-0576, CVE-2014-0581, and CVE-2014-8441.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)
AdobeFlash Player Version >= 13.0 < 13.0.0.252
   ApplemacOS X
   MicrosoftWindows
AdobeFlash Player Version >= 14.0 <= 14.0.0.179
   ApplemacOS X
   MicrosoftWindows
AdobeFlash Player Version >= 15.0 < 15.0.0.223
   ApplemacOS X
   MicrosoftWindows
AdobeFlash Player Version >= 11.0 < 11.2.202.418
   LinuxLinux Kernel
AdobeAir Sdk Version <= 15.0.0.356
AdobeAir Version <= 15.0.0.356
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 86.84% 0.994
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 10 10 10
AV:N/AC:L/Au:N/C:C/I:C/A:C
http://www.securityfocus.com/bid/71047
Third Party Advisory
VDB Entry
https://www.exploit-db.com/exploits/36880/
Third Party Advisory
Exploit
VDB Entry