Lucene search
AdobeCVE-2014-0520HistoryMay 14, 2014 - 11:13 a.m.
CVE-2014-0520
2014-05-1411:13:05
CWE-264
adobe
web.nvd.nist.gov
49
cve
adobe flash player
adobe air sdk
access restrictions
security vulnerability
nvd
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
6.4
Confidence
Low
EPSS
0.01
Percentile
83.4%
Adobe Flash Player before 13.0.0.214 on Windows and OS X and before 11.2.202.359 on Linux, Adobe AIR SDK before 13.0.0.111, and Adobe AIR SDK & Compiler before 13.0.0.111 allow attackers to bypass intended access restrictions via unspecified vectors, a different vulnerability than CVE-2014-0517, CVE-2014-0518, and CVE-2014-0519.
Affected configurations
Node
adobeflash_playerRange13.0–13.0.0.214
applemac_os_x
ORmicrosoftwindowsMatch-
Node
adobeflash_playerRange11.0–11.2.202.359
linuxlinux_kernel
Node
adobeadobe_airRange<13.0.0.111
| Vendor | Product | Version | CPE |
|---|---|---|---|
| adobe | flash_player | * | cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:* |
| apple | mac_os_x | * | cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:* |
| microsoft | windows | - | cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* |
| linux | linux_kernel | * | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
| adobe | adobe_air | * | cpe:2.3:a:adobe:adobe_air:*:*:*:*:*:*:*:* |
Related
cve
cve
nvd
nvd
cvelist
cvelist
prion
prion
Design/Logic Flaw
2014-05-14 11:13:00
Design/Logic Flaw
2014-05-14 11:13:00
Design/Logic Flaw
2014-05-14 11:13:00
ubuntucve
ubuntucve
openvas
openvas
Adobe Flash Player Multiple Vulnerabilities (May 2014) - Mac OS X
2014-05-22 00:00:00
Adobe Flash Player Multiple Vulnerabilities (May 2014) - Linux
2014-05-22 00:00:00
Adobe Flash Player Multiple Vulnerabilities (May 2014) - Windows
2014-05-22 00:00:00
nessus
nessus
openSUSE Security Update : flash-player (openSUSE-SU-2014:0679-1)
2014-06-13 00:00:00
RHEL 5 / 6 : flash-plugin (RHSA-2014:0496)
2014-05-15 00:00:00
Adobe AIR < 13.0.0.111 Multiple Vulnerabilities (APSB14-14)
2014-05-21 00:00:00
freebsd
freebsd
linux-flashplugin -- multiple vulnerabilities
2014-03-13 00:00:00
suse
suse
Security update for flash-player (important)
2014-05-17 02:05:28
kaspersky
kaspersky
KLA10003 Multiple vulnerabilities in Adobe Flash Player
2014-06-27 00:00:00
gentoo
gentoo
Adobe Flash Player: Multiple vulnerabilities
2014-06-10 00:00:00
redhat
redhat
(RHSA-2014:0496) Critical: flash-plugin security update
2014-05-14 00:00:00
mageia
mageia
Updated flash-player-plugin packages fix multiple vulnerabilities
2014-05-15 02:15:26
checkpoint_advisories
checkpoint_advisories
Adobe Flash Player Sandbox Security Bypass (APSB14-14: CVE-2014-0520)
2014-06-16 00:00:00
Adobe Flash Player and AIR Security Bypass (APSB14-14: CVE-2014-0517)
2014-06-24 00:00:00
Adobe Flash Player Sandbox Security Bypass (APSB14-14: CVE-2014-0518)
2014-05-28 00:00:00
seebug
seebug
One of my first sandbox escapes and bugs (CVE-2015-1743)
2017-06-14 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
6.4
Confidence
Low
EPSS
0.01
Percentile
83.4%
Related for CVE-2014-0520