Unrated severityNVD Advisory· Published Apr 29, 2014· Updated May 6, 2026

CVE-2014-0515

Description

Buffer overflow in Adobe Flash Player before 11.7.700.279 and 11.8.x through 13.0.x before 13.0.0.206 on Windows and OS X, and before 11.2.202.356 on Linux, allows remote attackers to execute arbitrary code via unspecified vectors, as exploited in the wild in April 2014.

Affected products

Adobe Inc./Flash Player
cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*
Range: >=11.0,<11.2.202.346

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

helpx.adobe.com/security/products/flash-player/apsb14-13.htmlnvdPatchVendor Advisory
lists.opensuse.org/opensuse-security-announce/2014-04/msg00017.htmlnvdMailing ListThird Party Advisory
lists.opensuse.org/opensuse-security-announce/2014-05/msg00000.htmlnvdMailing ListThird Party Advisory
lists.opensuse.org/opensuse-security-announce/2014-05/msg00001.htmlnvdMailing ListThird Party Advisory
rhn.redhat.com/errata/RHSA-2014-0447.htmlnvdThird Party Advisory
security.gentoo.org/glsa/glsa-201405-04.xmlnvdThird Party Advisory
www.securityfocus.com/bid/67092nvdThird Party AdvisoryVDB Entry
www.securitytracker.com/id/1030155nvdThird Party AdvisoryVDB Entry

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.074
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000