CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
Confidence
High
EPSS
Percentile
70.2%
Cross-site scripting (XSS) vulnerability in Adobe Flash Player before 13.0.0.223 and 14.x before 14.0.0.125 on Windows and OS X and before 11.2.202.378 on Linux, Adobe AIR before 14.0.0.110, Adobe AIR SDK before 14.0.0.110, and Adobe AIR SDK & Compiler before 14.0.0.110 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2014-0531 and CVE-2014-0533.
Vendor | Product | Version | CPE |
---|---|---|---|
adobe | adobe_air_sdk | * | cpe:2.3:a:adobe:adobe_air_sdk:*:*:*:*:*:*:*:* |
adobe | adobe_air_sdk | 13.0.0.83 | cpe:2.3:a:adobe:adobe_air_sdk:13.0.0.83:*:*:*:*:*:*:* |
adobe | adobe_air | * | cpe:2.3:a:adobe:adobe_air:*:*:*:*:*:*:*:* |
adobe | adobe_air | 13.0.0.83 | cpe:2.3:a:adobe:adobe_air:13.0.0.83:*:*:*:*:*:*:* |
adobe | flash_player | * | cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:* |
adobe | flash_player | 13.0.0.182 | cpe:2.3:a:adobe:flash_player:13.0.0.182:*:*:*:*:*:*:* |
adobe | flash_player | 13.0.0.201 | cpe:2.3:a:adobe:flash_player:13.0.0.201:*:*:*:*:*:*:* |
adobe | flash_player | 13.0.0.206 | cpe:2.3:a:adobe:flash_player:13.0.0.206:*:*:*:*:*:*:* |
apple | mac_os_x | * | cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:* |
microsoft | windows | * | cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:* |
helpx.adobe.com/security/products/flash-player/apsb14-16.html
lists.opensuse.org/opensuse-security-announce/2014-06/msg00021.html
lists.opensuse.org/opensuse-updates/2014-06/msg00029.html
lists.opensuse.org/opensuse-updates/2014-06/msg00030.html
rhn.redhat.com/errata/RHSA-2014-0745.html
secunia.com/advisories/58390
secunia.com/advisories/58465
secunia.com/advisories/58585
secunia.com/advisories/59053
secunia.com/advisories/59304
security.gentoo.org/glsa/glsa-201406-17.xml
www.securityfocus.com/bid/67973
www.securitytracker.com/id/1030368