NVD disclosure day

Published threat advisories for February 27, 2013

CVE advisoryKnown Exploit

CVE-2013-0648

Adobe Flash Player Code Execution Vulnerability

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

A vulnerability in Adobe Flash Player's ExternalInterface ActionScript functionality allows remote attackers to execute arbitrary code via crafted SWF content. This poses a risk of system compromise for organizations still using affected versions, which are now end-of-life. Discontinuing use of Flash Player is recommen

NVD published: • CISA KEV
CVE advisoryKnown Exploit

CVE-2013-0643

Adobe Flash Player Sandbox Privilege Escalation Vulnerability

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

A vulnerability in Adobe Flash Player's sandbox could allow remote attackers to execute arbitrary code by presenting crafted SWF content. This poses a risk to organizations as the affected software is end-of-life and no longer supported.

NVD published: • CISA KEV