Lucene search

AdobeCVE-2014-0548

HistorySep 10, 2014 - 1:55 a.m.

CVE-2014-0548

2014-09-1001:55:06

CWE-264

adobe

web.nvd.nist.gov

cve

2014

0548

adobe flash player

remote attackers

same origin policy

nvd

security vulnerability

bypass

vectors

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.5

Confidence

Low

EPSS

0.028

Percentile

90.6%

JSON

Adobe Flash Player before 13.0.0.244 and 14.x and 15.x before 15.0.0.152 on Windows and OS X and before 11.2.202.406 on Linux, Adobe AIR before 15.0.0.249 on Windows and OS X and before 15.0.0.252 on Android, Adobe AIR SDK before 15.0.0.249, and Adobe AIR SDK & Compiler before 15.0.0.249 allow remote attackers to bypass the Same Origin Policy via unspecified vectors.

Affected configurations

Nvd

Node

adobeadobe_airRange≤14.0.0.179

adobeadobe_airMatch13.0.0.83

adobeadobe_airMatch13.0.0.111

adobeadobe_airMatch14.0.0.110

adobeadobe_airMatch14.0.0.137

AND

googleandroid

Node

adobeadobe_air_sdkRange≤14.0.0.178

adobeadobe_air_sdkMatch13.0.0.83

adobeadobe_air_sdkMatch13.0.0.111

adobeadobe_air_sdkMatch14.0.0.110

adobeadobe_air_sdkMatch14.0.0.137

Node

adobeflash_playerRange≤13.0.0.241

adobeflash_playerMatch13.0.0.182

adobeflash_playerMatch13.0.0.201

adobeflash_playerMatch13.0.0.206

adobeflash_playerMatch13.0.0.214

adobeflash_playerMatch13.0.0.223

adobeflash_playerMatch13.0.0.231

adobeflash_playerMatch14.0.0.125

adobeflash_playerMatch14.0.0.145

adobeflash_playerMatch14.0.0.176

adobeflash_playerMatch14.0.0.179

adobeflash_playerMatch15.0.0.144

AND

applemac_os_x

microsoftwindows

Node

adobeflash_playerRange≤11.2.202.400

adobeflash_playerMatch11.2.202.223

adobeflash_playerMatch11.2.202.228

adobeflash_playerMatch11.2.202.233

adobeflash_playerMatch11.2.202.235

adobeflash_playerMatch11.2.202.236

adobeflash_playerMatch11.2.202.238

adobeflash_playerMatch11.2.202.243

adobeflash_playerMatch11.2.202.251

adobeflash_playerMatch11.2.202.258

adobeflash_playerMatch11.2.202.261

adobeflash_playerMatch11.2.202.262

adobeflash_playerMatch11.2.202.270

adobeflash_playerMatch11.2.202.273

adobeflash_playerMatch11.2.202.275

adobeflash_playerMatch11.2.202.280

adobeflash_playerMatch11.2.202.285

adobeflash_playerMatch11.2.202.291

adobeflash_playerMatch11.2.202.297

adobeflash_playerMatch11.2.202.310

adobeflash_playerMatch11.2.202.332

adobeflash_playerMatch11.2.202.335

adobeflash_playerMatch11.2.202.336

adobeflash_playerMatch11.2.202.341

adobeflash_playerMatch11.2.202.346

adobeflash_playerMatch11.2.202.350

adobeflash_playerMatch11.2.202.356

adobeflash_playerMatch11.2.202.359

adobeflash_playerMatch11.2.202.378

adobeflash_playerMatch11.2.202.394

AND

linuxlinux_kernel

Node

adobeadobe_airRange≤14.0.0.178

adobeadobe_airMatch13.0.0.83

adobeadobe_airMatch13.0.0.111

adobeadobe_airMatch14.0.0.110

adobeadobe_airMatch14.0.0.137

AND

applemac_os_x

microsoftwindows

VendorProductVersionCPE
adobeadobe_air*cpe:2.3:a:adobe:adobe_air:*:*:*:*:*:*:*:*
adobeadobe_air13.0.0.83cpe:2.3:a:adobe:adobe_air:13.0.0.83:*:*:*:*:*:*:*
adobeadobe_air13.0.0.111cpe:2.3:a:adobe:adobe_air:13.0.0.111:*:*:*:*:*:*:*
adobeadobe_air14.0.0.110cpe:2.3:a:adobe:adobe_air:14.0.0.110:*:*:*:*:*:*:*
adobeadobe_air14.0.0.137cpe:2.3:a:adobe:adobe_air:14.0.0.137:*:*:*:*:*:*:*
googleandroid*cpe:2.3:o:google:android:*:*:*:*:*:*:*:*
adobeadobe_air_sdk*cpe:2.3:a:adobe:adobe_air_sdk:*:*:*:*:*:*:*:*
adobeadobe_air_sdk13.0.0.83cpe:2.3:a:adobe:adobe_air_sdk:13.0.0.83:*:*:*:*:*:*:*
adobeadobe_air_sdk13.0.0.111cpe:2.3:a:adobe:adobe_air_sdk:13.0.0.111:*:*:*:*:*:*:*
adobeadobe_air_sdk14.0.0.110cpe:2.3:a:adobe:adobe_air_sdk:14.0.0.110:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
adobe	adobe_air	*	cpe:2.3:a:adobe:adobe_air::::::::
adobe	adobe_air	13.0.0.83	cpe:2.3:a:adobe:adobe_air:13.0.0.83:::::::*
adobe	adobe_air	13.0.0.111	cpe:2.3:a:adobe:adobe_air:13.0.0.111:::::::*
adobe	adobe_air	14.0.0.110	cpe:2.3:a:adobe:adobe_air:14.0.0.110:::::::*
adobe	adobe_air	14.0.0.137	cpe:2.3:a:adobe:adobe_air:14.0.0.137:::::::*
google	android	*	cpe:2.3:o:google:android::::::::
adobe	adobe_air_sdk	*	cpe:2.3:a:adobe:adobe_air_sdk::::::::
adobe	adobe_air_sdk	13.0.0.83	cpe:2.3:a:adobe:adobe_air_sdk:13.0.0.83:::::::*
adobe	adobe_air_sdk	13.0.0.111	cpe:2.3:a:adobe:adobe_air_sdk:13.0.0.111:::::::*
adobe	adobe_air_sdk	14.0.0.110	cpe:2.3:a:adobe:adobe_air_sdk:14.0.0.110:::::::*