CVE-2009-0114 — Adobe Flash Player vulnerability

5 documents5 sources

Severity

5.8MEDIUMNVD

EPSS

22.9%

top 4.10%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Adobe Flash Player Adobe Flash Player FOR Linux Adobe AIR +1 more

Timeline

PublishedFeb 26

Latest updateMay 2

Description

Unspecified vulnerability in the Settings Manager in Adobe Flash Player 9.x before 9.0.159.0 and 10.x before 10.0.22.87, and possibly other versions, allows remote attackers to trick a user into visiting an arbitrary URL via unknown vectors, related to "a potential Clickjacking issue variant."

CVSS vector

AV:N/AC:M/C:N/I:P/A:PExploitability: 8.6 | Impact: 4.9

Affected Packages3 packages

▶NVDadobe/flash_player10.0.12.36+31

▶NVDadobe/air1.5

▶NVDadobe/flex3.0

Patches

Patch: www.adobe.com ↗Patch: www.vupen.com ↗Patch: www.adobe.com ↗

🔴Vulnerability Details

GHSA

GHSA-j6cw-fqgq-9q8c: Unspecified vulnerability in the Settings Manager in Adobe Flash Player 9↗2022-05-02

▶

CVEList

CVE-2009-0114: Unspecified vulnerability in the Settings Manager in Adobe Flash Player 9↗2009-02-26

▶

📋Vendor Advisories

Red Hat

flash-plugin: Adobe Flash Player settings manager display page update↗2009-02-24

▶

💬Community

Bugzilla

CVE-2009-0114 flash-plugin: Adobe Flash Player settings manager display page update↗2009-02-24

▶