Lucene search

AdobeCVE-2012-0756

HistoryFeb 16, 2012 - 7:55 p.m.

CVE-2012-0756

2012-02-1619:55:01

adobe

web.nvd.nist.gov

113

cve-2012-0756

adobe flash player

access restrictions

security vulnerability

nvd

cve-2012-0755

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

6.3

Confidence

Low

EPSS

0.324

Percentile

97.0%

JSON

Adobe Flash Player before 10.3.183.15 and 11.x before 11.1.102.62 on Windows, Mac OS X, Linux, and Solaris; before 11.1.111.6 on Android 2.x and 3.x; and before 11.1.115.6 on Android 4.x allows attackers to bypass intended access restrictions via unspecified vectors, a different vulnerability than CVE-2012-0755.

Affected configurations

Nvd

Node

adobeflash_playerRange<10.3.183.15

adobeflash_playerRange11.0–11.1.102.62

AND

applemac_os_xMatch-

linuxlinux_kernelMatch-

microsoftwindowsMatch-

oraclesolarisMatch--

Node

adobeflash_playerRange<11.1.111.6

AND

googleandroidRange2.0–3.2

Node

adobeflash_playerRange<11.1.115.6

AND

googleandroidMatch4.0

VendorProductVersionCPE
adobeflash_player*cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*
applemac_os_x-cpe:2.3:o:apple:mac_os_x:-:*:*:*:*:*:*:*
linuxlinux_kernel-cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
microsoftwindows-cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
oraclesolaris-cpe:2.3:o:oracle:solaris:-:*:*:*:*:*:-:*
googleandroid*cpe:2.3:o:google:android:*:*:*:*:*:*:*:*
googleandroid4.0cpe:2.3:o:google:android:4.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
adobe	flash_player	*	cpe:2.3:a:adobe:flash_player::::::::
apple	mac_os_x	-	cpe:2.3:o:apple:mac_os_x:-:::::::*
linux	linux_kernel	-	cpe:2.3:o:linux:linux_kernel:-:::::::*
microsoft	windows	-	cpe:2.3:o:microsoft:windows:-:::::::*
oracle	solaris	-	cpe:2.3:o:oracle:solaris:-::::::-:
google	android	*	cpe:2.3:o:google:android::::::::
google	android	4.0	cpe:2.3:o:google:android:4.0:::::::*