VYPR
Unrated severityNVD Advisory· Published Feb 21, 2014· Updated Jun 17, 2026

CVE-2014-0499

CVE-2014-0499

Description

Adobe Flash Player before 11.7.700.269 and 11.8.x through 12.0.x before 12.0.0.70 on Windows and Mac OS X and before 11.2.202.341 on Linux, Adobe AIR before 4.0.0.1628 on Android, Adobe AIR SDK before 4.0.0.1628, and Adobe AIR SDK & Compiler before 4.0.0.1628 do not prevent access to address information, which makes it easier for attackers to bypass the ASLR protection mechanism via unspecified vectors.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

6
  • Adobe Inc./Air2 versions
    cpe:2.3:a:adobe:adobe_air:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:adobe:adobe_air:*:*:*:*:*:*:*:*range: <4.0.0.1628
    • (no CPE)range: before 4.0.0.1628 on Android
  • cpe:2.3:a:adobe:adobe_air_sdk:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:adobe:adobe_air_sdk:*:*:*:*:*:*:*:*range: <4.0.0.1628
    • (no CPE)range: before 4.0.0.1628
  • cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*range: >=11.0,<11.7.700.269
    • (no CPE)range: before 11.7.700.269 and 11.8.x through 12.0.x before 12.0.0.70 on Windows and Mac OS X and before 11.2.202.341 on Linux

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.