CVE-2009-0522

3 documents3 sources
Severity
4.3MEDIUM
EPSS
1.9%
top 16.72%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
Adobe Flash PlayerAdobe Flash Player FOR LinuxAdobe AIR+1 more
Timeline
PublishedFeb 26
Latest updateMay 2

Description

Adobe Flash Player 9.x before 9.0.159.0 and 10.x before 10.0.22.87 on Windows allows remote attackers to trick a user into visiting an arbitrary URL via an unspecified manipulation of the "mouse pointer display," related to a "Clickjacking attack."

CVSS vector

AV:N/AC:M/C:N/I:P/A:NExploitability: 8.6 | Impact: 2.9

Affected Packages3 packages

NVDadobe/flash_player10.0.12.36+31
NVDadobe/air1.5
NVDadobe/flex3.0

Patches

Patch: www.adobe.comPatch: www.adobe.com

🔴Vulnerability Details

2
GHSA
GHSA-qr6w-h8jw-cw4j: Adobe Flash Player 92022-05-02
CVEList
CVE-2009-0522: Adobe Flash Player 92009-02-26
CVE-2009-0522 (MEDIUM CVSS 4.3) | Adobe Flash Player 9.x before 9.0.1 | cvebase.io