CVE-2014-0502
Adobe Flash Player Double Free Vulnerablity
CVSS
—
No CVSS
EPSS
24.2%
p98
KEV
YES
Sep 17, 2024
Exploit Today
79
0-100
Published: — · Last modified: —
24.2%EPSS · 30 days24.2%
2026-06-302026-07-16
Product
Adobe / Flash Player
Vulnerability
Adobe Flash Player Double Free Vulnerablity
Added to KEV
Sep 17, 2024
Remediate by
Oct 8, 2024
Known ransomware use
No
Summary description
Adobe Flash Player contains a double free vulnerability that allows a remote attacker to execute arbitrary code.
Required action
The impacted product is end-of-life (EoL) and/or end-of-service (EoS). Users should discontinue utilization of the product.
Notes
https://www.adobe.com/products/flashplayer/end-of-life-alternative.html#eol-alternative-faq ; https://nvd.nist.gov/vuln/detail/CVE-2014-0502
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2014-0497—100.0%
KEV—80Adobe Flash Player Integer Underflow Vulnerablity—CVE-2015-3113—100.0%
KEV—80Adobe Flash Player Heap-Based Buffer Overflow Vulnerability—CVE-2015-5119—99.9%
KEV—80Adobe Flash Player Use-After-Free Vulnerability—CVE-2011-0611—99.9%
KEV—80Adobe Flash Player Remote Code Execution Vulnerability—CVE-2015-0313—99.9%
KEV—80Adobe Flash Player Use-After-Free Vulnerability—CVE-2015-5122—99.8%
KEV—80Adobe Flash Player Use-After-Free Vulnerability—