Adobe Flash Player prior to 11.7.700.275 and 11.8.x up to and including 13.0.x prior to 13.0.0.182 on Windows and OS X and prior to 11.2.202.350 on Linux, Adobe AIR prior to 13.0.0.83 on Android, Adobe AIR SDK prior to 13.0.0.83, and Adobe AIR SDK & Compiler prior to 13.0.0.83 allow malicious users to bypass intended access restrictions and obtain sensitive information via unspecified vectors.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
adobe adobe air sdk 3.9.0.1380 |
||
adobe adobe air sdk 3.5.0.890 |
||
adobe adobe air sdk 3.4.0.2540 |
||
adobe adobe air sdk 3.8.0.1430 |
||
adobe adobe air sdk 3.9.0.1030 |
||
adobe adobe air sdk 3.6.0.599 |
||
adobe adobe air sdk 3.2.0.2070 |
||
adobe adobe air sdk 3.5.0.1060 |
||
adobe adobe air sdk |
||
adobe adobe air sdk 4.0.0.1390 |
||
adobe adobe air sdk 3.5.0.880 |
||
adobe adobe air sdk 3.8.0.870 |
||
adobe adobe air sdk 3.7.0.2090 |
||
adobe adobe air sdk 3.7.0.1860 |
||
adobe adobe air sdk 3.3.0.3650 |
||
adobe adobe air sdk 3.0.0.4080 |
||
adobe adobe air sdk 3.9.0.1210 |
||
adobe adobe air sdk 3.8.0.910 |
||
adobe adobe air sdk 3.3.0.3690 |
||
adobe adobe air sdk 3.1.0.488 |
||
adobe adobe air sdk 3.5.0.600 |
||
adobe adobe air sdk 3.7.0.1530 |
||
adobe adobe air sdk 3.4.0.2710 |
||
adobe adobe air sdk 3.6.0.6090 |
||
adobe adobe air 1.0 |
||
adobe adobe air 1.1.0.5790 |
||
adobe adobe air 3.1.0.4880 |
||
adobe adobe air 1.5 |
||
adobe adobe air |
||
adobe adobe air 1.5.1 |
||
adobe adobe air 2.6 |
||
adobe adobe air 3.1.0.485 |
||
adobe adobe air 2.7 |
||
adobe adobe air 2.7.0.1948 |
||
adobe adobe air 3.5.0.600 |
||
adobe adobe air 2.7.1.19610 |
||
adobe adobe air 1.5.3.9130 |
||
adobe adobe air 2.7.0.19530 |
||
adobe adobe air 3.4.0.2710 |
||
adobe adobe air 1.0.4990 |
||
adobe adobe air 3.9.0.1060 |
||
adobe adobe air 3.6.0.597 |
||
adobe adobe air 3.9.0.1380 |
||
adobe adobe air 3.5.0.1060 |
||
adobe adobe air 3.7.0.2090 |
||
adobe adobe air 3.6.0.6090 |
||
adobe adobe air 3.9.0.1030 |
||
adobe adobe air 3.0.0.408 |
||
adobe adobe air 3.8.0.910 |
||
adobe adobe air 2.5.0.16600 |
||
adobe adobe air 1.5.0.7220 |
||
adobe adobe air 2.7.0.19480 |
||
adobe adobe air 2.0.3.13070 |
||
adobe adobe air 2.7.0.1953 |
||
adobe adobe air 3.5.0.890 |
||
adobe adobe air 1.5.3 |
||
adobe adobe air 1.5.2 |
||
adobe adobe air 2.7.1 |
||
adobe adobe air 2.5.1.17730 |
||
adobe adobe air 3.9.0.1210 |
||
adobe adobe air 2.0.2 |
||
adobe adobe air 2.6.0.19140 |
||
adobe adobe air 2.0.2.12610 |
||
adobe adobe air 3.7.0.1530 |
||
adobe adobe air 3.5.0.880 |
||
adobe adobe air 3.0.0.4080 |
||
adobe adobe air 2.0.3 |
||
adobe adobe air 3.2.0.2070 |
||
adobe adobe air 1.5.3.9120 |
||
adobe adobe air 1.0.1 |
||
adobe adobe air 3.8.0.870 |
||
adobe adobe air 2.0.4 |
||
adobe adobe air 3.7.0.1860 |
||
adobe adobe air 1.1 |
||
adobe adobe air 3.2.0.207 |
||
adobe adobe air 3.1.0.488 |
||
adobe adobe air 3.4.0.2540 |
||
adobe adobe air 2.6.0.19120 |
||
adobe adobe air 1.5.1.8210 |
||
adobe adobe air 3.3.0.3670 |
||
adobe adobe air 1.0.8.4990 |
||
adobe flash player |
||
adobe flash player 11.0 |
||
adobe flash player 11.0.1.152 |
||
adobe flash player 11.0.1.153 |
||
adobe flash player 11.1 |
||
adobe flash player 11.1.102.55 |
||
adobe flash player 11.1.102.59 |
||
adobe flash player 11.1.102.62 |
||
adobe flash player 11.1.102.63 |
||
adobe flash player 11.1.111.8 |
||
adobe flash player 11.1.111.44 |
||
adobe flash player 11.1.111.50 |
||
adobe flash player 11.1.111.54 |
||
adobe flash player 11.1.115.7 |
||
adobe flash player 11.1.115.34 |
||
adobe flash player 11.1.115.48 |
||
adobe flash player 11.1.115.54 |
||
adobe flash player 11.1.115.58 |
||
adobe flash player 11.2.202.223 |
||
adobe flash player 11.2.202.228 |
||
adobe flash player 11.2.202.233 |
||
adobe flash player 11.2.202.235 |
||
adobe flash player 11.2.202.236 |
||
adobe flash player 11.2.202.238 |
||
adobe flash player 11.2.202.243 |
||
adobe flash player 11.2.202.251 |
||
adobe flash player 11.2.202.258 |
||
adobe flash player 11.2.202.261 |
||
adobe flash player 11.2.202.262 |
||
adobe flash player 11.2.202.270 |
||
adobe flash player 11.2.202.273 |
||
adobe flash player 11.2.202.275 |
||
adobe flash player 11.2.202.280 |
||
adobe flash player 11.2.202.285 |
||
adobe flash player 11.2.202.291 |
||
adobe flash player 11.2.202.297 |
||
adobe flash player 11.2.202.310 |
||
adobe flash player 11.2.202.327 |
||
adobe flash player 11.2.202.332 |
||
adobe flash player 11.2.202.335 |
||
adobe flash player 11.2.202.336 |
||
adobe flash player 11.2.202.341 |
||
adobe flash player 11.3.300.257 |
||
adobe flash player 11.3.300.262 |
||
adobe flash player 11.3.300.265 |
||
adobe flash player 11.3.300.268 |
||
adobe flash player 11.3.300.270 |
||
adobe flash player 11.3.300.271 |
||
adobe flash player 11.3.300.273 |
||
adobe flash player 11.4.402.265 |
||
adobe flash player 11.4.402.278 |
||
adobe flash player 11.4.402.287 |
||
adobe flash player 11.5.502.110 |
||
adobe flash player 11.5.502.135 |
||
adobe flash player 11.5.502.136 |
||
adobe flash player 11.5.502.146 |
||
adobe flash player 11.5.502.149 |
||
adobe flash player 11.6.602.167 |
||
adobe flash player 11.6.602.168 |
||
adobe flash player 11.6.602.171 |
||
adobe flash player 11.6.602.180 |
||
adobe flash player 11.7.700.169 |
||
adobe flash player 11.7.700.202 |
||
adobe flash player 11.7.700.224 |
||
adobe flash player 11.7.700.232 |
||
adobe flash player 11.7.700.242 |
||
adobe flash player 11.7.700.252 |
||
adobe flash player 11.7.700.257 |
||
adobe flash player 11.7.700.260 |
||
adobe flash player 11.8.800.94 |
||
adobe flash player 11.8.800.97 |
||
adobe flash player 11.8.800.168 |
||
adobe flash player 11.9.900.117 |
||
adobe flash player 11.9.900.152 |
||
adobe flash player 11.9.900.170 |
||
adobe flash player 12.0.0.38 |
||
adobe flash player 12.0.0.41 |
||
adobe flash player 12.0.0.43 |
This month’s Adobe Patch Tuesday revolves around Flash. This means the zero-days used by VUPEN to exploit Adobe Reader at CanSecWest last month go unpatched. CVE-2014-0506 and CVE-2014-0507 deal with remote code execution and were both used separately at CanSecWest’s Pwn2Own. (It looks like these CVEs were initially assigned CVE-2014-0511 and CVE-2014-0510.) CVE-2014-0508 deals with information leakage, while CVE-2014-0509 deals with an XSS issue. Though we haven’t seen in the wild expl...