CVSS: 10.0EPSS: 0%CPEs: 10EXPL: 0CVE-2014-0585 – flash-plugin: multiple code execution flaws (APSB14-24)
https://notcve.org/view.php?id=CVE-2014-0585
11 Nov 2014 — Adobe Flash Player before 13.0.0.252 and 14.x and 15.x before 15.0.0.223 on Windows and OS X and before 11.2.202.418 on Linux, Adobe AIR before 15.0.0.356, Adobe AIR SDK before 15.0.0.356, and Adobe AIR SDK & Compiler before 15.0.0.356 allow attackers to execute arbitrary code by leveraging an unspecified "type confusion," a different vulnerability than CVE-2014-0577, CVE-2014-0584, CVE-2014-0586, and CVE-2014-0590. Adobe Flash Player anterior a 13.0.0.252 y 14.x y 15.x anterior a 15.0.0.223 en Windows y OS... • http://helpx.adobe.com/security/products/flash-player/apsb14-24.html • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 10.0EPSS: 1%CPEs: 10EXPL: 0CVE-2014-0582 – flash-plugin: multiple code execution flaws (APSB14-24)
https://notcve.org/view.php?id=CVE-2014-0582
11 Nov 2014 — Heap-based buffer overflow in Adobe Flash Player before 13.0.0.252 and 14.x and 15.x before 15.0.0.223 on Windows and OS X and before 11.2.202.418 on Linux, Adobe AIR before 15.0.0.356, Adobe AIR SDK before 15.0.0.356, and Adobe AIR SDK & Compiler before 15.0.0.356 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2014-0589. Desbordamiento de buffer basado en memoria dinámica en Adobe Flash Player anterior a 13.0.0.252 y 14.x y 15.x anterior a 15.0.0.223 ... • http://helpx.adobe.com/security/products/flash-player/apsb14-24.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 0%CPEs: 10EXPL: 0CVE-2014-0584 – flash-plugin: multiple code execution flaws (APSB14-24)
https://notcve.org/view.php?id=CVE-2014-0584
11 Nov 2014 — Adobe Flash Player before 13.0.0.252 and 14.x and 15.x before 15.0.0.223 on Windows and OS X and before 11.2.202.418 on Linux, Adobe AIR before 15.0.0.356, Adobe AIR SDK before 15.0.0.356, and Adobe AIR SDK & Compiler before 15.0.0.356 allow attackers to execute arbitrary code by leveraging an unspecified "type confusion," a different vulnerability than CVE-2014-0577, CVE-2014-0585, CVE-2014-0586, and CVE-2014-0590. Adobe Flash Player anterior a 13.0.0.252 y 14.x y 15.x anterior a 15.0.0.223 en Windows y OS... • http://helpx.adobe.com/security/products/flash-player/apsb14-24.html • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 7.5EPSS: 0%CPEs: 10EXPL: 0CVE-2014-8437 – flash-plugin: information disclosure leading to session token leak (APSB14-24)
https://notcve.org/view.php?id=CVE-2014-8437
11 Nov 2014 — Adobe Flash Player before 13.0.0.252 and 14.x and 15.x before 15.0.0.223 on Windows and OS X and before 11.2.202.418 on Linux, Adobe AIR before 15.0.0.356, Adobe AIR SDK before 15.0.0.356, and Adobe AIR SDK & Compiler before 15.0.0.356 allow remote attackers to discover session tokens via unspecified vectors. Adobe Flash Player anterior a 13.0.0.252 y 14.x y 15.x anterior a 15.0.0.223 en Windows y OS X y anterior 11.2.202.418 en Linux, Adobe AIR anterior a 15.0.0.356, Adobe AIR SDK anterior a 15.0.0.356, y ... • http://helpx.adobe.com/security/products/flash-player/apsb14-24.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 10.0EPSS: 0%CPEs: 10EXPL: 1CVE-2014-0586 – flash-plugin: multiple code execution flaws (APSB14-24)
https://notcve.org/view.php?id=CVE-2014-0586
11 Nov 2014 — Adobe Flash Player before 13.0.0.252 and 14.x and 15.x before 15.0.0.223 on Windows and OS X and before 11.2.202.418 on Linux, Adobe AIR before 15.0.0.356, Adobe AIR SDK before 15.0.0.356, and Adobe AIR SDK & Compiler before 15.0.0.356 allow attackers to execute arbitrary code by leveraging an unspecified "type confusion," a different vulnerability than CVE-2014-0577, CVE-2014-0584, CVE-2014-0585, and CVE-2014-0590. Adobe Flash Player anterior a 13.0.0.252 y 14.x y 15.x anterior a 15.0.0.223 en Windows y OS... • https://packetstorm.news/files/id/136264 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 10.0EPSS: 10%CPEs: 10EXPL: 0CVE-2014-0573 – flash-plugin: multiple code execution flaws (APSB14-24)
https://notcve.org/view.php?id=CVE-2014-0573
11 Nov 2014 — Use-after-free vulnerability in Adobe Flash Player before 13.0.0.252 and 14.x and 15.x before 15.0.0.223 on Windows and OS X and before 11.2.202.418 on Linux, Adobe AIR before 15.0.0.356, Adobe AIR SDK before 15.0.0.356, and Adobe AIR SDK & Compiler before 15.0.0.356 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2014-0588 and CVE-2014-8438. Vulnerabilidad de uso después de liberación en Adobe Flash Player anterior a 13.0.0.252 y 14.x y 15.x anterior a... • http://helpx.adobe.com/security/products/flash-player/apsb14-24.html •
CVSS: 10.0EPSS: 1%CPEs: 10EXPL: 0CVE-2014-0589 – flash-plugin: multiple code execution flaws (APSB14-24)
https://notcve.org/view.php?id=CVE-2014-0589
11 Nov 2014 — Heap-based buffer overflow in Adobe Flash Player before 13.0.0.252 and 14.x and 15.x before 15.0.0.223 on Windows and OS X and before 11.2.202.418 on Linux, Adobe AIR before 15.0.0.356, Adobe AIR SDK before 15.0.0.356, and Adobe AIR SDK & Compiler before 15.0.0.356 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2014-0582. Desbordamiento de buffer basado en memoria dinámica en Adobe Flash Player anterior a 13.0.0.252 y 14.x y 15.x anterior a 15.0.0.223 ... • http://helpx.adobe.com/security/products/flash-player/apsb14-24.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 8%CPEs: 10EXPL: 0CVE-2014-0588 – flash-plugin: multiple code execution flaws (APSB14-24)
https://notcve.org/view.php?id=CVE-2014-0588
11 Nov 2014 — Use-after-free vulnerability in Adobe Flash Player before 13.0.0.252 and 14.x and 15.x before 15.0.0.223 on Windows and OS X and before 11.2.202.418 on Linux, Adobe AIR before 15.0.0.356, Adobe AIR SDK before 15.0.0.356, and Adobe AIR SDK & Compiler before 15.0.0.356 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2014-0573 and CVE-2014-8438. Vulnerabilidad de uso después de liberación en Adobe Flash Player anterior a 13.0.0.252 y 14.x y 15.x anterior a... • http://helpx.adobe.com/security/products/flash-player/apsb14-24.html •
CVSS: 10.0EPSS: 1%CPEs: 29EXPL: 0CVE-2014-0564 – flash-plugin: multiple code execution flaws (APSB14-22)
https://notcve.org/view.php?id=CVE-2014-0564
15 Oct 2014 — Adobe Flash Player before 13.0.0.250 and 14.x and 15.x before 15.0.0.189 on Windows and OS X and before 11.2.202.411 on Linux, Adobe AIR before 15.0.0.293, Adobe AIR SDK before 15.0.0.302, and Adobe AIR SDK & Compiler before 15.0.0.302 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-0558. Adobe Flash Player anterior a 13.0.0.250 y 14.x y 15.x anterior a 15.0.0.189 en Windows y OS X y anterior a 11.2.2... • http://helpx.adobe.com/security/products/flash-player/apsb14-22.html •
CVSS: 10.0EPSS: 4%CPEs: 66EXPL: 0CVE-2014-0558 – flash-plugin: multiple code execution flaws (APSB14-22)
https://notcve.org/view.php?id=CVE-2014-0558
15 Oct 2014 — Adobe Flash Player before 13.0.0.250 and 14.x and 15.x before 15.0.0.189 on Windows and OS X and before 11.2.202.411 on Linux, Adobe AIR before 15.0.0.293, Adobe AIR SDK before 15.0.0.302, and Adobe AIR SDK & Compiler before 15.0.0.302 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-0564. Adobe Flash Player anterior a 13.0.0.250 y 14.x y 15.x anterior a 15.0.0.189 en Windows y OS X y anterior a 11.2.2... • http://helpx.adobe.com/security/products/flash-player/apsb14-22.html • CWE-94: Improper Control of Generation of Code ('Code Injection') •