What is CVE-2014-0515?

CVE-2014-0515 is a vulnerability in Adobe Flash_player, classified under Improper Restriction of Operations within the Bounds of a Memory Buffer. Published 2014-04-29.

Is CVE-2014-0515 known to be exploited?

2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Buffer overflow in Adobe Flash_player

CVE-2014-0515

Buffer overflow in Adobe Flash Player before 11.7.700.279 and 11.8.x through 13.0.x before 13.0.0.206 on Windows and OS X, and before 11.2.202.356 on Linux, allows remote attackers to execute arbitrary code via unspecified vectors, as expl…

Vulnerability class: Buffer Overflow

EPSS: 0.929 (99.8th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

Public proof-of-concept exploits

References

67092 (Third Party Advisory, VDB Entry, vdb-entry, x_refsource_BID)
openSUSE-SU-2014:0585 (vendor-advisory, Mailing List, Third Party Advisory, x_refsource_SUSE)
openSUSE-SU-2014:0589 (vendor-advisory, Mailing List, Third Party Advisory, x_refsource_SUSE)
GLSA-201405-04 (vendor-advisory, Third Party Advisory, x_refsource_GENTOO)
SUSE-SU-2014:0605 (vendor-advisory, Mailing List, Third Party Advisory, x_refsource_SUSE)
RHSA-2014:0447 (x_refsource_REDHAT, vendor-advisory, Third Party Advisory)
1030155 (Third Party Advisory, VDB Entry, vdb-entry, x_refsource_SECTRACK)
psirt@adobe.com (x_refsource_CONFIRM, Patch, Vendor Advisory)

Frequently asked questions

What is CVE-2014-0515?: CVE-2014-0515 is a vulnerability in Adobe Flash_player, classified under Improper Restriction of Operations within the Bounds of a Memory Buffer. Published 2014-04-29.
Is CVE-2014-0515 known to be exploited?: 2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.