CVE-2013-5330
EXPLOITEDAdobe Flash Player <11.7.700.252, 11.8.x, 11.9.x - RCE
Title source: llmExploitation Summary
CVE-2013-5330 has been observed exploited in the wild (reported by VulnCheck KEV).
Description
Adobe Flash Player before 11.7.700.252 and 11.8.x and 11.9.x before 11.9.900.152 on Windows and Mac OS X and before 11.2.202.327 on Linux, Adobe AIR before 3.9.0.1210, Adobe AIR SDK before 3.9.0.1210, and Adobe AIR SDK & Compiler before 3.9.0.1210 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2013-5329.
References (5)
Core 5
Core References
Third Party Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2013-1518.html
Mailing List, Third Party Advisory vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2013-11/msg00015.html
Mailing List, Third Party Advisory vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2013-11/msg00016.html
Patch, Vendor Advisory x_refsource_confirm
http://www.adobe.com/support/security/bulletins/apsb13-26.html
Mailing List, Third Party Advisory vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2013-11/msg00019.html
Scores
EPSS
0.1129
EPSS Percentile
95.5%
Details
VulnCheck KEV
2014-02-11
CWE
CWE-119
Status
published
Products (3)
adobe/air
< 3.9.0.1210
adobe/air_sdk
< 3.9.0.1210
adobe/flash_player
11.0 - 11.7.700.252
Published
Nov 13, 2013
Tracked Since
Feb 18, 2026