Stack-based buffer overflow in Adobe Flash Player before 13.0.0.259 and 14.x and 15.x before 15.0.0.246 on Windows and OS X and before 11.2.202.425 on Linux allows attackers to execute arbitrary code via unspecified vectors, as exploited in the wild in December 2014.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Mon, 10 Feb 2025 21:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-121
Metrics cvssV3_1

{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}

kev

{'dateAdded': '2022-04-13'}

ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'active', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Tue, 13 Aug 2024 23:45:00 +0000

Type Values Removed Values Added
References

cve-icon MITRE

Status: PUBLISHED

Assigner: adobe

Published:

Updated: 2025-07-30T01:46:47.730Z

Reserved: 2014-12-01T00:00:00.000Z

Link: CVE-2014-9163

cve-icon Vulnrichment

Updated: 2024-08-06T13:33:13.592Z

cve-icon NVD

Status : Deferred

Published: 2014-12-10T21:59:35.163

Modified: 2025-04-12T10:46:40.837

Link: CVE-2014-9163

cve-icon Redhat

Severity : Critical

Publid Date: 2014-12-09T00:00:00Z

Links: CVE-2014-9163 - Bugzilla

cve-icon OpenCVE Enrichment

No data.