CVE-2016-4171
7.8
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Summary
Unspecified vulnerability in Adobe Flash Player 21.0.0.242 and earlier allows remote attackers to execute arbitrary code via unknown vectors, as exploited in the wild in June 2016.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://security.gentoo.org/glsa/201606-08
- https://helpx.adobe.com/security/products/flash-player/apsa16-03.html
- http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00038.html
- https://www.kb.cert.org/vuls/id/748992
- https://access.redhat.com/errata/RHSA-2016:1238
- http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00035.html
- http://www.securitytracker.com/id/1036094
- http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00031.html
- http://www.securityfocus.com/bid/91184
- https://helpx.adobe.com/security/products/flash-player/apsb16-18.html
CISA ADP Vulnrichment
- SSVC:
- Exploitation: active
- Automatable: no
- Technical Impact: total
Additional References
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2016-4171
- https://github.com/cisagov/vulnrichment/issues/196
References
- https://security.gentoo.org/glsa/201606-08
- https://helpx.adobe.com/security/products/flash-player/apsa16-03.html
- http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00038.html
- https://www.kb.cert.org/vuls/id/748992
- https://access.redhat.com/errata/RHSA-2016:1238
- http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00035.html
- http://www.securitytracker.com/id/1036094
- http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00031.html
- http://www.securityfocus.com/bid/91184
- https://helpx.adobe.com/security/products/flash-player/apsb16-18.html
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.