CVE-2013-0648

KEV

Published: Feb 27, 2013 Last Modified: Ott 22, 2025

ExploitDB:

Other exploit source:

Google Dorks:

HIGH 8,8

Source: [email protected]

Attack Vector: network

Attack Complexity: low

Privileges Required: none

User Interaction: required

Scope: unchanged

Confidentiality: high

Integrity: high

Availability: high

HIGH 9,3

Source: [email protected]

Access Vector: network

Access Complexity: medium

Authentication: none

Confidentiality: complete

Integrity: complete

Availability: complete

Description

AI Translation Available

Unspecified vulnerability in the ExternalInterface ActionScript functionality in Adobe Flash Player before 10.3.183.67 and 11.x before 11.6.602.171 on Windows and Mac OS X, and before 10.3.183.67 and 11.x before 11.2.202.273 on Linux, allows remote attackers to execute arbitrary code via crafted SWF content, as exploited in the wild in February 2013.

EPSS (Exploit Prediction Scoring System)

Trend Analysis

EPSS (Exploit Prediction Scoring System)

Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.

EPSS Score

0,6587

Percentile

1,0th

Updated

EPSS Score Trend (Last 91 Days)

Operating System

Linux Enterprise Desktop by Suse

Product Information

Vendor Suse

Product Linux Enterprise Desktop

Version 11

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:suse:linux_enterprise_desktop:11:sp2:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Application

Flash Player by Adobe

Product Information

Vendor Adobe

Product Flash Player

Version Range Affected

From 11.0 (inclusive)

To 11.2.202.273 (exclusive)

CPE Identifier

View Detailed Analysis


                  cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Application

Flash Player by Adobe

Product Information

Vendor Adobe

Product Flash Player

Version Range Affected

To 10.3.183.67 (exclusive)

CPE Identifier

View Detailed Analysis


                  cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Linux Enterprise Desktop by Suse

Product Information

Vendor Suse

Product Linux Enterprise Desktop

Version 10

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:suse:linux_enterprise_desktop:10:sp4:*:*:-:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Enterprise Linux Eus by Redhat

Product Information

Vendor Redhat

Product Enterprise Linux Eus

Version 5.9

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:redhat:enterprise_linux_eus:5.9:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Application

Flash Player by Adobe

Product Information

Vendor Adobe

Product Flash Player

Version Range Affected

From 11.0 (inclusive)

To 11.6.602.171 (exclusive)

CPE Identifier

View Detailed Analysis


                  cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Enterprise Linux Eus by Redhat

Product Information

Vendor Redhat

Product Enterprise Linux Eus

Version 6.4

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:redhat:enterprise_linux_eus:6.4:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Enterprise Linux Server Aus by Redhat

Product Information

Vendor Redhat

Product Enterprise Linux Server Aus

Version 5.9

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:redhat:enterprise_linux_server_aus:5.9:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Enterprise Linux Server by Redhat

Product Information

Vendor Redhat

Product Enterprise Linux Server

Version 6.0

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Enterprise Linux Server Aus by Redhat

Product Information

Vendor Redhat

Product Enterprise Linux Server Aus

Version 6.4

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:redhat:enterprise_linux_server_aus:6.4:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Opensuse by Opensuse

Product Information

Vendor Opensuse

Product Opensuse

Version 11.4

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:opensuse:opensuse:11.4:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Enterprise Linux Workstation by Redhat

Product Information

Vendor Redhat

Product Enterprise Linux Workstation

Version 6.0

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Opensuse by Opensuse

Product Information

Vendor Opensuse

Product Opensuse

Version 12.1

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:opensuse:opensuse:12.1:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Enterprise Linux Desktop by Redhat

Product Information

Vendor Redhat

Product Enterprise Linux Desktop

Version 6.0

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

https://www.cisa.gov/known-exploited-vulnerabilities-catalo…

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2013…

http://lists.opensuse.org/opensuse-security-announce/2013-0…

http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00025.html

http://lists.opensuse.org/opensuse-security-announce/2013-0…

http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00026.html

http://lists.opensuse.org/opensuse-security-announce/2013-0…

http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00035.html

http://rhn.redhat.com/errata/RHSA-2013-0574.html

http://www.adobe.com/support/security/bulletins/apsb13-08.h…

http://www.adobe.com/support/security/bulletins/apsb13-08.html

http://lists.opensuse.org/opensuse-security-announce/2013-0…

http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00025.html

http://lists.opensuse.org/opensuse-security-announce/2013-0…

http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00026.html

http://lists.opensuse.org/opensuse-security-announce/2013-0…

http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00035.html

http://rhn.redhat.com/errata/RHSA-2013-0574.html

http://www.adobe.com/support/security/bulletins/apsb13-08.h…

http://www.adobe.com/support/security/bulletins/apsb13-08.html

CVE-2013-0648

Description

EPSS (Exploit Prediction Scoring System)

EPSS (Exploit Prediction Scoring System)

EPSS Score Trend (Last 91 Days)

Linux Enterprise Desktop by Suse

Product Information

Flash Player by Adobe

Product Information

Flash Player by Adobe

Product Information

Linux Enterprise Desktop by Suse

Product Information

Enterprise Linux Eus by Redhat

Product Information

Flash Player by Adobe

Product Information

Enterprise Linux Eus by Redhat

Product Information

Enterprise Linux Server Aus by Redhat

Product Information

Enterprise Linux Server by Redhat

Product Information

Enterprise Linux Server Aus by Redhat

Product Information

Opensuse by Opensuse

Product Information

Enterprise Linux Workstation by Redhat

Product Information

Opensuse by Opensuse

Product Information

Enterprise Linux Desktop by Redhat

Product Information

Iscriviti alla newsletter