← Retour aux CVEs
CVE-2014-0497
CRITICALCISA KEV9.8
Description
Integer underflow in Adobe Flash Player before 11.7.700.261 and 11.8.x through 12.0.x before 12.0.0.44 on Windows and Mac OS X, and before 11.2.202.336 on Linux, allows remote attackers to execute arbitrary code via unspecified vectors.
Details CVE
Score CVSS v3.19.8
SeveriteCRITICAL
Vecteur CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vecteur d'attaqueNETWORK
ComplexiteLOW
Privileges requisNONE
Interaction utilisateurNONE
Publie2/5/2014
Derniere modification4/21/2026
Sourcekev
Observations honeypot0
CISA KEV
FournisseurAdobe
ProduitFlash Player
Nom vulnerabiliteAdobe Flash Player Integer Underflow Vulnerablity
Date ajout KEV2024-09-17
Date limite remediation2024-10-08
Utilise dans ransomwareUnknown
Produits affectes
adobe:flash_playerapple:mac_os_xapple:macosgoogle:chromegoogle:chrome_oslinux:linux_kernelmicrosoft:windowsopensuse:opensuseredhat:enterprise_linux_desktopredhat:enterprise_linux_eusredhat:enterprise_linux_serverredhat:enterprise_linux_server_ausredhat:enterprise_linux_workstationsuse:linux_enterprise_desktop
Faiblesses (CWE)
CWE-191CWE-191
References
http://helpx.adobe.com/security/products/flash-player/apsb14-04.html(psirt@adobe.com)
http://rhn.redhat.com/errata/RHSA-2014-0137.html(psirt@adobe.com)
http://secunia.com/advisories/56437(psirt@adobe.com)
http://secunia.com/advisories/56737(psirt@adobe.com)
http://secunia.com/advisories/56780(psirt@adobe.com)
http://secunia.com/advisories/56799(psirt@adobe.com)
http://secunia.com/advisories/56839(psirt@adobe.com)
http://www.exploit-db.com/exploits/33212(psirt@adobe.com)
http://www.osvdb.org/102849(psirt@adobe.com)
http://www.securityfocus.com/bid/65327(psirt@adobe.com)
http://www.securitytracker.com/id/1029715(psirt@adobe.com)
https://exchange.xforce.ibmcloud.com/vulnerabilities/90884(psirt@adobe.com)
http://googlechromereleases.blogspot.com/2014/02/stable-channel-update.html(af854a3a-2127-422b-91ae-364da2661108)
http://helpx.adobe.com/security/products/flash-player/apsb14-04.html(af854a3a-2127-422b-91ae-364da2661108)
http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00000.html(af854a3a-2127-422b-91ae-364da2661108)
http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00001.html(af854a3a-2127-422b-91ae-364da2661108)
http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00006.html(af854a3a-2127-422b-91ae-364da2661108)
http://rhn.redhat.com/errata/RHSA-2014-0137.html(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/56437(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/56737(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/56780(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/56799(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/56839(af854a3a-2127-422b-91ae-364da2661108)
http://www.exploit-db.com/exploits/33212(af854a3a-2127-422b-91ae-364da2661108)
http://www.osvdb.org/102849(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/65327(af854a3a-2127-422b-91ae-364da2661108)
http://www.securitytracker.com/id/1029715(af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/90884(af854a3a-2127-422b-91ae-364da2661108)
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2014-0497(134c704f-9b21-4f2e-91b3-4a467353bcc0)
Correlations IOC
Aucune correlation enregistree
This product uses data from the NVD API but is not endorsed or certified by the NVD.