Adobe Flash Player before 13.0.0.244 and 14.x and 15.x before 15.0.0.152 on Windows and OS X and before 11.2.202.406 on Linux, Adobe AIR before 15.0.0.249 on Windows and OS X and before 15.0.0.252 on Android, Adobe AIR SDK before 15.0.0.249, and Adobe AIR SDK & Compiler before 15.0.0.249 allow attackers to bypass intended access restrictions via unspecified vectors.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:N/AC:L/Au:N/C:C/I:C/A:C
Vendors Products
Linux
  • Linux Kernel
Adobe
  • Adobe Air
  • Flash Player
  • Adobe Air Sdk
Microsoft
  • Windows
Google
  • Android
Apple
  • Mac Os X

Configuration 1 [-]

AND
OR cpe:2.3:a:adobe:adobe_air:*:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:13.0.0.83:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:13.0.0.111:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:14.0.0.110:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:14.0.0.137:*:*:*:*:*:*:*
cpe:2.3:o:google:android:*:*:*:*:*:*:*:*

Configuration 2 [-]

AND
OR cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:13.0.0.182:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:13.0.0.201:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:13.0.0.206:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:13.0.0.214:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:13.0.0.223:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:13.0.0.231:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:14.0.0.125:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:14.0.0.145:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:14.0.0.176:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:14.0.0.179:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:15.0.0.144:*:*:*:*:*:*:*
OR cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*

Configuration 3 [-]

AND
OR cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.2.202.223:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.2.202.228:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.2.202.233:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.2.202.235:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.2.202.236:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.2.202.238:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.2.202.243:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.2.202.251:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.2.202.258:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.2.202.261:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.2.202.262:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.2.202.270:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.2.202.273:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.2.202.275:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.2.202.280:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.2.202.285:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.2.202.291:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.2.202.297:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.2.202.310:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.2.202.332:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.2.202.335:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.2.202.336:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.2.202.341:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.2.202.346:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.2.202.350:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.2.202.356:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.2.202.359:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.2.202.378:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.2.202.394:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Configuration 4 [-]

AND
OR cpe:2.3:a:adobe:adobe_air:*:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:13.0.0.83:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:13.0.0.111:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:14.0.0.110:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:14.0.0.137:*:*:*:*:*:*:*
OR cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*

Configuration 5 [-]

OR cpe:2.3:a:adobe:adobe_air_sdk:*:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air_sdk:13.0.0.83:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air_sdk:13.0.0.111:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air_sdk:14.0.0.110:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air_sdk:14.0.0.137:*:*:*:*:*:*:*
References
Link Resource
http://helpx.adobe.com/security/products/flash-player/apsb14-21.html Patch Vendor Advisory
http://lists.opensuse.org/opensuse-security-announce/2014-09/msg00006.html
http://lists.opensuse.org/opensuse-security-announce/2014-09/msg00016.html
http://lists.opensuse.org/opensuse-security-announce/2014-09/msg00021.html
http://secunia.com/advisories/61089
http://security.gentoo.org/glsa/glsa-201409-05.xml
http://www.securityfocus.com/bid/69697
http://www.securitytracker.com/id/1030822
https://exchange.xforce.ibmcloud.com/vulnerabilities/95824
History

No history.

cve-icon MITRE Information

Status: PUBLISHED

Assigner: adobe

Published: 2014-09-10T10:00:00

Updated: 2017-08-28T12:57:01

Reserved: 2013-12-20T00:00:00

Link: CVE-2014-0554

JSON object: View

cve-icon NVD Information

Status : Modified

Published: 2014-09-10T10:55:06.723

Modified: 2017-08-29T01:34:11.857

Link: CVE-2014-0554

JSON object: View

cve-icon Redhat Information

No data.

CWE