Vulnerability CVE-2014-0531: Information

Description

Cross-site scripting (XSS) vulnerability in Adobe Flash Player before 13.0.0.223 and 14.x before 14.0.0.125 on Windows and OS X and before 11.2.202.378 on Linux, Adobe AIR before 14.0.0.110, Adobe AIR SDK before 14.0.0.110, and Adobe AIR SDK & Compiler before 14.0.0.110 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2014-0532 and CVE-2014-0533.

Severity: MEDIUM (4.3)

Fixed packages

References to Advisories, Solutions, and Tools

1. Affected configurations:

   1. Configuration 1

      cpe:2.3:a:adobe:adobe_air:*:*:*:*:*:*:*:*

      End including

      13.0.0.111

      ---

      cpe:2.3:a:adobe:adobe_air:13.0.0.83:*:*:*:*:*:*:*

      ---

      Configuration 2

      cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:adobe:flash_player:13.0.0.182:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:adobe:flash_player:13.0.0.201:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:adobe:flash_player:13.0.0.206:*:*:*:*:*:*:*

      ---

      Running on/with:

      cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*

      ---

      Running on/with:

      cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*

      ---

      Configuration 3

      cpe:2.3:a:adobe:adobe_air_sdk:*:*:*:*:*:*:*:*

      End including

      13.0.0.111

      ---

      cpe:2.3:a:adobe:adobe_air_sdk:13.0.0.83:*:*:*:*:*:*:*

      ---

      Configuration 4

      cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:adobe:flash_player:11.2.202.223:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:adobe:flash_player:11.2.202.228:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:adobe:flash_player:11.2.202.233:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:adobe:flash_player:11.2.202.235:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:adobe:flash_player:11.2.202.236:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:adobe:flash_player:11.2.202.238:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:adobe:flash_player:11.2.202.243:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:adobe:flash_player:11.2.202.251:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:adobe:flash_player:11.2.202.258:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:adobe:flash_player:11.2.202.261:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:adobe:flash_player:11.2.202.262:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:adobe:flash_player:11.2.202.270:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:adobe:flash_player:11.2.202.273:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:adobe:flash_player:11.2.202.275:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:adobe:flash_player:11.2.202.280:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:adobe:flash_player:11.2.202.285:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:adobe:flash_player:11.2.202.291:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:adobe:flash_player:11.2.202.297:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:adobe:flash_player:11.2.202.310:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:adobe:flash_player:11.2.202.332:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:adobe:flash_player:11.2.202.335:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:adobe:flash_player:11.2.202.336:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:adobe:flash_player:11.2.202.341:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:adobe:flash_player:11.2.202.346:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:adobe:flash_player:11.2.202.350:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:adobe:flash_player:11.2.202.356:*:*:*:*:*:*:*

      ---

      Running on/with:

      cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

      ---