CVSS: 10.0EPSS: 83%CPEs: 11EXPL: 0CVE-2014-8439 – Adobe Flash Player Dereferenced Pointer Vulnerability
https://notcve.org/view.php?id=CVE-2014-8439
25 Nov 2014 — Adobe Flash Player before 13.0.0.258 and 14.x and 15.x before 15.0.0.239 on Windows and OS X and before 11.2.202.424 on Linux, Adobe AIR before 15.0.0.293, Adobe AIR SDK before 15.0.0.302, and Adobe AIR SDK & Compiler before 15.0.0.302 allow attackers to execute arbitrary code or cause a denial of service (invalid pointer dereference) via unspecified vectors. Adobe Flash Player anterior a 13.0.0.258 y 14.x y 15.x anterior a 15.0.0.239 en Windows y OS X y anterior a 11.2.202.424 en Linux, Adobe AIR anterior ... • http://helpx.adobe.com/security/products/flash-player/apsb14-22.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-416: Use After Free •
CVSS: 10.0EPSS: 96%CPEs: 10EXPL: 2CVE-2014-8440 – Adobe Flash Player - UncompressViaZlibVariant Uninitialized Memory
https://notcve.org/view.php?id=CVE-2014-8440
11 Nov 2014 — Adobe Flash Player before 13.0.0.252 and 14.x and 15.x before 15.0.0.223 on Windows and OS X and before 11.2.202.418 on Linux, Adobe AIR before 15.0.0.356, Adobe AIR SDK before 15.0.0.356, and Adobe AIR SDK & Compiler before 15.0.0.356 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-0576, CVE-2014-0581, and CVE-2014-8441. Adobe Flash Player anterior a 13.0.0.252 y 14.x y 15.x anterior a 15.0.0.223 en ... • https://packetstorm.news/files/id/131716 •
CVSS: 10.0EPSS: 1%CPEs: 10EXPL: 0CVE-2014-8438 – flash-plugin: multiple code execution flaws (APSB14-24)
https://notcve.org/view.php?id=CVE-2014-8438
11 Nov 2014 — Use-after-free vulnerability in Adobe Flash Player before 13.0.0.252 and 14.x and 15.x before 15.0.0.223 on Windows and OS X and before 11.2.202.418 on Linux, Adobe AIR before 15.0.0.356, Adobe AIR SDK before 15.0.0.356, and Adobe AIR SDK & Compiler before 15.0.0.356 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2014-0573 and CVE-2014-0588. Vulnerabilidad de uso después de liberación en Adobe Flash Player anterior a 13.0.0.252 y 14.x y 15.x anterior a... • http://helpx.adobe.com/security/products/flash-player/apsb14-24.html •
CVSS: 10.0EPSS: 0%CPEs: 10EXPL: 0CVE-2014-0581 – flash-plugin: multiple code execution flaws (APSB14-24)
https://notcve.org/view.php?id=CVE-2014-0581
11 Nov 2014 — Adobe Flash Player before 13.0.0.252 and 14.x and 15.x before 15.0.0.223 on Windows and OS X and before 11.2.202.418 on Linux, Adobe AIR before 15.0.0.356, Adobe AIR SDK before 15.0.0.356, and Adobe AIR SDK & Compiler before 15.0.0.356 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-0576, CVE-2014-8440, and CVE-2014-8441. Adobe Flash Player anterior a 13.0.0.252 y 14.x y 15.x anterior a 15.0.0.223 en ... • http://helpx.adobe.com/security/products/flash-player/apsb14-24.html •
CVSS: 10.0EPSS: 0%CPEs: 10EXPL: 0CVE-2014-0576 – flash-plugin: multiple code execution flaws (APSB14-24)
https://notcve.org/view.php?id=CVE-2014-0576
11 Nov 2014 — Adobe Flash Player before 13.0.0.252 and 14.x and 15.x before 15.0.0.223 on Windows and OS X and before 11.2.202.418 on Linux, Adobe AIR before 15.0.0.356, Adobe AIR SDK before 15.0.0.356, and Adobe AIR SDK & Compiler before 15.0.0.356 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-0581, CVE-2014-8440, and CVE-2014-8441. Adobe Flash Player anterior a 13.0.0.252 y 14.x y 15.x anterior a 15.0.0.223 en ... • http://helpx.adobe.com/security/products/flash-player/apsb14-24.html •
CVSS: 10.0EPSS: 0%CPEs: 10EXPL: 0CVE-2014-0577 – flash-plugin: multiple code execution flaws (APSB14-24)
https://notcve.org/view.php?id=CVE-2014-0577
11 Nov 2014 — Adobe Flash Player before 13.0.0.252 and 14.x and 15.x before 15.0.0.223 on Windows and OS X and before 11.2.202.418 on Linux, Adobe AIR before 15.0.0.356, Adobe AIR SDK before 15.0.0.356, and Adobe AIR SDK & Compiler before 15.0.0.356 allow attackers to execute arbitrary code by leveraging an unspecified "type confusion," a different vulnerability than CVE-2014-0584, CVE-2014-0585, CVE-2014-0586, and CVE-2014-0590. Adobe Flash Player anterior a 13.0.0.252 y 14.x y 15.x anterior a 15.0.0.223 en Windows y OS... • http://helpx.adobe.com/security/products/flash-player/apsb14-24.html • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 10.0EPSS: 1%CPEs: 10EXPL: 0CVE-2014-8441 – flash-plugin: multiple code execution flaws (APSB14-24)
https://notcve.org/view.php?id=CVE-2014-8441
11 Nov 2014 — Adobe Flash Player before 13.0.0.252 and 14.x and 15.x before 15.0.0.223 on Windows and OS X and before 11.2.202.418 on Linux, Adobe AIR before 15.0.0.356, Adobe AIR SDK before 15.0.0.356, and Adobe AIR SDK & Compiler before 15.0.0.356 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-0576, CVE-2014-0581, and CVE-2014-8440. Adobe Flash Player anterior a 13.0.0.252 y 14.x y 15.x anterior a 15.0.0.223 en ... • http://helpx.adobe.com/security/products/flash-player/apsb14-24.html •
CVSS: 10.0EPSS: 2%CPEs: 10EXPL: 0CVE-2014-0590 – flash-plugin: multiple code execution flaws (APSB14-24)
https://notcve.org/view.php?id=CVE-2014-0590
11 Nov 2014 — Adobe Flash Player before 13.0.0.252 and 14.x and 15.x before 15.0.0.223 on Windows and OS X and before 11.2.202.418 on Linux, Adobe AIR before 15.0.0.356, Adobe AIR SDK before 15.0.0.356, and Adobe AIR SDK & Compiler before 15.0.0.356 allow attackers to execute arbitrary code by leveraging an unspecified "type confusion," a different vulnerability than CVE-2014-0577, CVE-2014-0584, CVE-2014-0585, and CVE-2014-0586. Adobe Flash Player anterior a 13.0.0.252 y 14.x y 15.x anterior a 15.0.0.223 en Windows y OS... • http://helpx.adobe.com/security/products/flash-player/apsb14-24.html •
CVSS: 10.0EPSS: 1%CPEs: 10EXPL: 0CVE-2014-0574 – flash-plugin: multiple code execution flaws (APSB14-24)
https://notcve.org/view.php?id=CVE-2014-0574
11 Nov 2014 — Double free vulnerability in Adobe Flash Player before 13.0.0.252 and 14.x and 15.x before 15.0.0.223 on Windows and OS X and before 11.2.202.418 on Linux, Adobe AIR before 15.0.0.356, Adobe AIR SDK before 15.0.0.356, and Adobe AIR SDK & Compiler before 15.0.0.356 allows attackers to execute arbitrary code via unspecified vectors. Vulnerabilidad de doble liberación en Adobe Flash Player anterior a 13.0.0.252 y 14.x y 15.x anterior a 15.0.0.223 en Windows y OS X y anterior a 11.2.202.418 en Linux, Adobe AIR ... • http://googlechromereleases.blogspot.com/2014/11/stable-channel-update_18.html • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 9.1EPSS: 0%CPEs: 10EXPL: 0CVE-2014-8442 – Gentoo Linux Security Advisory 201411-06
https://notcve.org/view.php?id=CVE-2014-8442
11 Nov 2014 — Adobe Flash Player before 13.0.0.252 and 14.x and 15.x before 15.0.0.223 on Windows and OS X and before 11.2.202.418 on Linux, Adobe AIR before 15.0.0.356, Adobe AIR SDK before 15.0.0.356, and Adobe AIR SDK & Compiler before 15.0.0.356 allow attackers to complete a transition from Low Integrity to Medium Integrity by leveraging incorrect permissions. Adobe Flash Player anterior a 13.0.0.252 y 14.x y 15.x anterior a 15.0.0.223 en Windows y OS X y anterior a 1.2.202.418 en Linux, Adobe AIR anterior a 15.0.0.3... • http://helpx.adobe.com/security/products/flash-player/apsb14-24.html • CWE-264: Permissions, Privileges, and Access Controls •