CVE-2016-1019
7.8
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Summary
Adobe Flash Player 21.0.0.197 and earlier allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via unspecified vectors, as exploited in the wild in April 2016.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://www.fireeye.com/blog/threat-research/2016/04/cve-2016-1019_a_new.html
- https://security.gentoo.org/glsa/201606-08
- http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00012.html
- https://helpx.adobe.com/security/products/flash-player/apsa16-01.html
- http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00010.html
- http://www.securitytracker.com/id/1035491
- http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00044.html
- http://blogs.adobe.com/psirt/?p=1330
- http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00009.html
- http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00045.html
- http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00055.html
- http://rhn.redhat.com/errata/RHSA-2016-0610.html
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-050
- https://helpx.adobe.com/security/products/flash-player/apsb16-10.html
- http://www.securityfocus.com/bid/85856
CISA ADP Vulnrichment
- SSVC:
- Exploitation: active
- Automatable: no
- Technical Impact: total
Additional References
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2016-1019
- https://github.com/cisagov/vulnrichment/issues/196
References
- https://www.fireeye.com/blog/threat-research/2016/04/cve-2016-1019_a_new.html
- https://security.gentoo.org/glsa/201606-08
- http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00012.html
- https://helpx.adobe.com/security/products/flash-player/apsa16-01.html
- http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00010.html
- http://www.securitytracker.com/id/1035491
- http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00044.html
- http://blogs.adobe.com/psirt/?p=1330
- http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00009.html
- http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00045.html
- http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00055.html
- http://rhn.redhat.com/errata/RHSA-2016-0610.html
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-050
- https://helpx.adobe.com/security/products/flash-player/apsb16-10.html
- http://www.securityfocus.com/bid/85856
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.