CVE-2014-0564

Name: CVE-2014-0564
Creator: NVD / NIST
Published: 2014-10-15T10:55:06.13+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 6.19%

Last modified Jun 17, 2026

CVE-2014-0564 is a vulnerability of currently unknown severity. Adobe Flash Player before 13.0.0.250 and 14.x and 15.x before 15.0.0.189 on Windows and OS X and before 11.2.202.411 on Linux, Adobe AIR before 15.0.0.293, Adobe AIR SDK before 15.0.0.302, and Adobe AIR SDK & Compiler before 15.0.0.302 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-0558.. EPSS estimates a 6.19% chance of exploitation in the next 30 days.

Description

Adobe Flash Player before 13.0.0.250 and 14.x and 15.x before 15.0.0.189 on Windows and OS X and before 11.2.202.411 on Linux, Adobe AIR before 15.0.0.293, Adobe AIR SDK before 15.0.0.302, and Adobe AIR SDK & Compiler before 15.0.0.302 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-0558.

Metrics

EPSS Probability

6.19%

92.6th percentile

Probability of exploitation in the next 30 days. Learn more

Affected Software

Vendor	Product	Versions	Update
Adobe	Flash Player	<= 11.2.202.406	—
Adobe	Flash Player	<= 13.0.0.244	—
Adobe	Flash Player	<= 15.0.0.152	—
Adobe	Flash Player	<= 15.0.0.167	—
Adobe	Flash Player Desktop Runtime	<= 15.0.0.167	—
Adobe	Air Desktop Runtime	<= 15.0.0.249	—
Adobe	Air Sdk	<= 15.0.0.249	—
Adobe	Air Sdk	<= 15.0.0.252	—
Opensuse	Evergreen	11.4	—
Opensuse	Opensuse	12.3	—
Opensuse	Opensuse	13.1	—
Suse	Linux Enterprise Desktop	11	Sp3

References

http://helpx.adobe.com/security/products/flash-player/apsb14-22.htmlPatch, Vendor Advisory
http://lists.opensuse.org/opensuse-security-announce/2014-11/msg00002.htmlMailing List, Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00013.htmlMailing List, Third Party Advisory
http://lists.opensuse.org/opensuse-updates/2014-10/msg00033.htmlMailing List, Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2014-1648.htmlBroken Link
http://secunia.com/advisories/61980Third Party Advisory
http://www.securitytracker.com/id/1031019Third Party Advisory, VDB Entry
http://helpx.adobe.com/security/products/flash-player/apsb14-22.htmlPatch, Vendor Advisory
http://lists.opensuse.org/opensuse-security-announce/2014-11/msg00002.htmlMailing List, Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00013.htmlMailing List, Third Party Advisory
http://lists.opensuse.org/opensuse-updates/2014-10/msg00033.htmlMailing List, Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2014-1648.htmlBroken Link
http://secunia.com/advisories/61980Third Party Advisory
http://www.securitytracker.com/id/1031019Third Party Advisory, VDB Entry

Timeline

Published: Oct 15, 2014
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2014-0564?

How severe is CVE-2014-0564?

Severity scoring for CVE-2014-0564 is pending analysis. The EPSS model estimates a 6.19% probability of exploitation in the next 30 days.

How do I fix CVE-2014-0564?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2014-0564?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST