CVE-2014-0503

critical

Description

Adobe Flash Player before 11.7.700.272 and 11.8.x through 12.0.x before 12.0.0.77 on Windows and OS X, and before 11.2.202.346 on Linux, allows remote attackers to bypass the Same Origin Policy via unspecified vectors.

References

Advisories
More

http://security.gentoo.org/glsa/glsa-201405-04.xml

http://rhn.redhat.com/errata/RHSA-2014-0289.html

http://lists.opensuse.org/opensuse-security-announce/2014-03/msg00014.html

http://lists.opensuse.org/opensuse-security-announce/2014-03/msg00013.html

http://helpx.adobe.com/security/products/flash-player/apsb14-08.html

Details

Source: Mitre, NVD

Published: 2014-03-12

Updated: 2025-04-12

Risk Information

CVSS v2

Base Score: 6.4

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:N

Severity: Medium

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical

EPSS

EPSS: 0.00502

Detections

Analytics