CVSS: 10.0EPSS: 7%CPEs: 25EXPL: 0CVE-2015-0309 – flash-plugin: Multiple code-execution flaws (APSB15-01)
https://notcve.org/view.php?id=CVE-2015-0309
13 Jan 2015 — Heap-based buffer overflow in Adobe Flash Player before 13.0.0.260 and 14.x through 16.x before 16.0.0.257 on Windows and OS X and before 11.2.202.429 on Linux, Adobe AIR before 16.0.0.245 on Windows and OS X and before 16.0.0.272 on Android, Adobe AIR SDK before 16.0.0.272, and Adobe AIR SDK & Compiler before 16.0.0.272 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2015-0304. Desbordamiento de buffer en memoria en Adobe Flash Player anterior a 13.0.0... • http://helpx.adobe.com/security/products/flash-player/apsb15-01.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-122: Heap-based Buffer Overflow •
CVSS: 10.0EPSS: 1%CPEs: 25EXPL: 0CVE-2015-0301 – flash-plugin: Information disclosure via various methods (APSB15-01)
https://notcve.org/view.php?id=CVE-2015-0301
13 Jan 2015 — Adobe Flash Player before 13.0.0.260 and 14.x through 16.x before 16.0.0.257 on Windows and OS X and before 11.2.202.429 on Linux, Adobe AIR before 16.0.0.245 on Windows and OS X and before 16.0.0.272 on Android, Adobe AIR SDK before 16.0.0.272, and Adobe AIR SDK & Compiler before 16.0.0.272 do not properly validate files, which has unspecified impact and attack vectors. Adobe Flash Player anterior a 13.0.0.260 y 14.x a través de 16.x anterior a 16.0.0.257 en Windows y OS X y anterior a 11.2.202.429 en Linu... • http://helpx.adobe.com/security/products/flash-player/apsb15-01.html • CWE-20: Improper Input Validation •
CVSS: 10.0EPSS: 3%CPEs: 25EXPL: 0CVE-2015-0308 – flash-plugin: Multiple code-execution flaws (APSB15-01)
https://notcve.org/view.php?id=CVE-2015-0308
13 Jan 2015 — Use-after-free vulnerability in Adobe Flash Player before 13.0.0.260 and 14.x through 16.x before 16.0.0.257 on Windows and OS X and before 11.2.202.429 on Linux, Adobe AIR before 16.0.0.245 on Windows and OS X and before 16.0.0.272 on Android, Adobe AIR SDK before 16.0.0.272, and Adobe AIR SDK & Compiler before 16.0.0.272 allows attackers to execute arbitrary code via unspecified vectors. Vulnerabilidad de uso después de liberación en Adobe Flash Player anterior a 13.0.0.260 y 14.x a través de 16.x anterio... • http://helpx.adobe.com/security/products/flash-player/apsb15-01.html • CWE-122: Heap-based Buffer Overflow •
CVSS: 7.5EPSS: 0%CPEs: 25EXPL: 0CVE-2015-0302 – flash-plugin: Information disclosure via various methods (APSB15-01)
https://notcve.org/view.php?id=CVE-2015-0302
13 Jan 2015 — Adobe Flash Player before 13.0.0.260 and 14.x through 16.x before 16.0.0.257 on Windows and OS X and before 11.2.202.429 on Linux, Adobe AIR before 16.0.0.245 on Windows and OS X and before 16.0.0.272 on Android, Adobe AIR SDK before 16.0.0.272, and Adobe AIR SDK & Compiler before 16.0.0.272 allow attackers to obtain sensitive keystroke information via unspecified vectors. Adobe Flash Player anterior a 13.0.0.260 y 14.x a través de 16.x anterior a 16.0.0.257 en Windows y OS X y anterior a 11.2.202.429 en Li... • http://helpx.adobe.com/security/products/flash-player/apsb15-01.html •
CVSS: 10.0EPSS: 76%CPEs: 7EXPL: 0CVE-2014-8443 – flash-plugin: Multiple code-execution flaws (APSB14-27)
https://notcve.org/view.php?id=CVE-2014-8443
10 Dec 2014 — Use-after-free vulnerability in Adobe Flash Player before 13.0.0.259 and 14.x through 16.x before 16.0.0.235 on Windows and OS X and before 11.2.202.425 on Linux allows attackers to execute arbitrary code via unspecified vectors. Vulnerabilidad de uso después de liberación en Adobe Flash Player anterior a 13.0.0.259 y 14.x hasta 16.x anterior a 16.0.0.235 en Windows y OS X y anterior a 11.2.202.425 en Linux permite a atacantes ejecutar código arbitrario a través de vectores no especificados. The flash-plugi... • http://helpx.adobe.com/security/products/flash-player/apsb14-27.html •
CVSS: 10.0EPSS: 0%CPEs: 7EXPL: 0CVE-2014-0580 – flash-plugin: Same-Origin-Policy bypass flaw (APSB14-27)
https://notcve.org/view.php?id=CVE-2014-0580
10 Dec 2014 — Adobe Flash Player before 13.0.0.259 and 14.x through 16.x before 16.0.0.235 on Windows and OS X and before 11.2.202.425 on Linux allows remote attackers to bypass the Same Origin Policy via unspecified vectors. Adobe Flash Player anterior a 13.0.0.259 y 14.x hasta 16.x anterior a 16.0.0.235 en Windows y OS X y anterior a 11.2.202.425 en Linux permite a atacantes remotos evadir Same Origin Policy a través de vectores no especificados. The flash-plugin package contains a Mozilla Firefox compatible Adobe Flas... • http://helpx.adobe.com/security/products/flash-player/apsb14-27.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 10.0EPSS: 0%CPEs: 6EXPL: 0CVE-2014-0587 – flash-plugin: Multiple code-execution flaws (APSB14-27)
https://notcve.org/view.php?id=CVE-2014-0587
10 Dec 2014 — Adobe Flash Player before 13.0.0.259 and 14.x through 16.x before 16.0.0.235 on Windows and OS X and before 11.2.202.425 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-9164. Adobe Flash Player anterior a 13.0.0.259 y 14.x hasta 16.x anterior a 16.0.0.235 en Windows y OS X y anterior a 11.2.202.425 en Linux permite a atacantes ejecutar código arbitrario o causar una denegación de servicio (c... • http://helpx.adobe.com/security/products/flash-player/apsb14-27.html • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 10.0EPSS: 0%CPEs: 7EXPL: 0CVE-2014-9164 – flash-plugin: Multiple code-execution flaws (APSB14-27)
https://notcve.org/view.php?id=CVE-2014-9164
10 Dec 2014 — Adobe Flash Player before 13.0.0.259 and 14.x through 16.x before 16.0.0.235 on Windows and OS X and before 11.2.202.425 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-0587. Adobe Flash Player anterior a 13.0.0.259 y 14.x hasta 16.x anterior a 16.0.0.235 en Windows y OS X y anteriores 11.2.202.425 en Linux permite a atacantes ejecutar código arbitrario o causar una denegación de servicio (c... • http://helpx.adobe.com/security/products/flash-player/apsb14-27.html • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 10.0EPSS: 0%CPEs: 7EXPL: 0CVE-2014-9162 – Adobe Flash Player Regular Expression Object Out-Of-Bound Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2014-9162
09 Dec 2014 — Adobe Flash Player before 13.0.0.259 and 14.x through 16.x before 16.0.0.235 on Windows and OS X and before 11.2.202.425 on Linux allows attackers to obtain sensitive information via unspecified vectors. Adobe Flash Player anterior a 13.0.0.259 y 14.x hasta 16.x anterior a 16.0.0.235 en Windows y OS X y anterior a 11.2.202.425 en Linux permite a atacantes obtener información sensible a través de vectores no especificados. This vulnerability allows remote attackers to disclose arbitrary memory on vulnerable ... • http://helpx.adobe.com/security/products/flash-player/apsb14-27.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 10.0EPSS: 7%CPEs: 7EXPL: 0CVE-2014-9163 – Adobe Flash Player Stack-Based Buffer Overflow Vulnerability
https://notcve.org/view.php?id=CVE-2014-9163
09 Dec 2014 — Stack-based buffer overflow in Adobe Flash Player before 13.0.0.259 and 14.x and 15.x before 15.0.0.246 on Windows and OS X and before 11.2.202.425 on Linux allows attackers to execute arbitrary code via unspecified vectors, as exploited in the wild in December 2014. Desbordamiento de buffer basado en pila en Adobe Flash Player anterior a 13.0.0.259 y 14.x y 15.x anterior a 15.0.0.246 en Windows y OS X y anteriores 11.2.202.425 en Linux permite a atacantes ejecutar código arbitrario a través de vectores no ... • http://helpx.adobe.com/security/products/flash-player/apsb14-27.html • CWE-121: Stack-based Buffer Overflow •