CVE-2014-0569

Name: CVE-2014-0569
Creator: NVD / NIST
Published: 2014-10-15T10:55:06.193+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 90.10%

Last modified Jun 17, 2026

CVE-2014-0569 is a vulnerability of currently unknown severity. Integer overflow in Adobe Flash Player before 13.0.0.250 and 14.x and 15.x before 15.0.0.189 on Windows and OS X and before 11.2.202.411 on Linux, Adobe AIR before 15.0.0.293, Adobe AIR SDK before 15.0.0.302, and Adobe AIR SDK & Compiler before 15.0.0.302 allows attackers to execute arbitrary code via unspecified vectors.. EPSS estimates a 90.10% chance of exploitation in the next 30 days.

Description

Integer overflow in Adobe Flash Player before 13.0.0.250 and 14.x and 15.x before 15.0.0.189 on Windows and OS X and before 11.2.202.411 on Linux, Adobe AIR before 15.0.0.293, Adobe AIR SDK before 15.0.0.302, and Adobe AIR SDK & Compiler before 15.0.0.302 allows attackers to execute arbitrary code via unspecified vectors.

Metrics

EPSS Probability

90.10%

99.8th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-190

Affected Software

Vendor	Product	Versions	Update
Adobe	Flash Player	<= 11.2.202.406	—
Adobe	Flash Player	<= 13.0.0.244	—
Adobe	Flash Player	<= 15.0.0.152	—
Adobe	Flash Player	<= 15.0.0.167	—
Adobe	Flash Player Desktop Runtime	<= 15.0.0.167	—
Adobe	Air Desktop Runtime	<= 15.0.0.249	—
Adobe	Air Sdk	<= 15.0.0.249	—
Adobe	Air Sdk	<= 15.0.0.252	—
Opensuse	Evergreen	11.4	—
Opensuse	Opensuse	12.3	—
Opensuse	Opensuse	13.1	—
Suse	Linux Enterprise Desktop	11	Sp3

References

http://helpx.adobe.com/security/products/flash-player/apsb14-22.htmlPatch, Vendor Advisory
http://lists.opensuse.org/opensuse-security-announce/2014-11/msg00002.htmlMailing List, Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00013.htmlMailing List, Third Party Advisory
http://lists.opensuse.org/opensuse-updates/2014-10/msg00033.htmlThird Party Advisory
http://rhn.redhat.com/errata/RHSA-2014-1648.htmlBroken Link
http://secunia.com/advisories/61980Third Party Advisory
http://www.securityfocus.com/bid/70441Third Party Advisory, VDB Entry
http://www.securitytracker.com/id/1031019Third Party Advisory, VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-14-365/Third Party Advisory, VDB Entry
http://helpx.adobe.com/security/products/flash-player/apsb14-22.htmlPatch, Vendor Advisory
http://lists.opensuse.org/opensuse-security-announce/2014-11/msg00002.htmlMailing List, Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00013.htmlMailing List, Third Party Advisory
http://lists.opensuse.org/opensuse-updates/2014-10/msg00033.htmlThird Party Advisory
http://rhn.redhat.com/errata/RHSA-2014-1648.htmlBroken Link
http://secunia.com/advisories/61980Third Party Advisory
http://www.securityfocus.com/bid/70441Third Party Advisory, VDB Entry
http://www.securitytracker.com/id/1031019Third Party Advisory, VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-14-365/Third Party Advisory, VDB Entry

Timeline

Published: Oct 15, 2014
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2014-0569?

How severe is CVE-2014-0569?

Severity scoring for CVE-2014-0569 is pending analysis. The EPSS model estimates a 90.10% probability of exploitation in the next 30 days.

How do I fix CVE-2014-0569?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2014-0569?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST