Access Restriction Bypass in Adobe Flash Player and AIR Products
CVE-2014-0554

Currently unrated

Key Information:

Vendor: Adobe
Status: Adobe Air
Vendor: CVE Published:; 10 September 2014

Summary

Adobe Flash Player and Adobe AIR products contain a vulnerability that enables attackers to bypass intended access restrictions through unspecified vectors. This flaw affects various versions of Flash Player and AIR, particularly on platforms such as Windows, OS X, and Linux. Users and administrators are advised to update their software to mitigate potential exploitation risks.

References

http://www.securityfocus.com/bid/69697

vdb-entryx_refsource_BID

http://security.gentoo.org/glsa/glsa-201409-05.xml

vendor-advisoryx_refsource_GENTOO

http://secunia.com/advisories/61089

third-party-advisoryx_refsource_SECUNIA

EPSS Score

10% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Sep 10, 2014
Vulnerability Reserved
Dec 20, 2013