TROYANOSYVIRUS
Volver a CVEs

CVE-2016-4117

CRITICALCISA KEV
9.8

Descripcion

Adobe Flash Player 21.0.0.226 and earlier allows remote attackers to execute arbitrary code via unspecified vectors, as exploited in the wild in May 2016.

Detalles CVE

Puntuacion CVSS v3.19.8
SeveridadCRITICAL
Vector CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vector de ataqueNETWORK
ComplejidadLOW
Privilegios requeridosNONE
Interaccion usuarioNONE
Publicado5/11/2016
Ultima modificacion11/17/2025
Fuentekev
Avistamientos honeypot0

CISA KEV

VendedorAdobe
ProductoFlash Player
Nombre vulnerabilidadAdobe Flash Player Arbitrary Code Execution Vulnerability
Fecha inclusion KEV2022-03-03
Fecha limite remediacion2022-03-24
Uso en ransomwareUnknown

Productos afectados

adobe:flash_playeropensuse:evergreenopensuse:opensuseredhat:enterprise_linux_desktopredhat:enterprise_linux_serverredhat:enterprise_linux_server_from_rhuiredhat:enterprise_linux_workstationsuse:linux_enterprise_desktopsuse:linux_enterprise_workstation_extension

Referencias

http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00044.html(psirt@adobe.com)
http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00045.html(psirt@adobe.com)
http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00046.html(psirt@adobe.com)
http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00047.html(psirt@adobe.com)
http://rhn.redhat.com/errata/RHSA-2016-1079.html(psirt@adobe.com)
http://www.securityfocus.com/bid/90505(psirt@adobe.com)
http://www.securitytracker.com/id/1035826(psirt@adobe.com)
https://helpx.adobe.com/security/products/flash-player/apsa16-02.html(psirt@adobe.com)
https://helpx.adobe.com/security/products/flash-player/apsb16-15.html(psirt@adobe.com)
https://security.gentoo.org/glsa/201606-08(psirt@adobe.com)
https://www.exploit-db.com/exploits/46339/(psirt@adobe.com)
http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00044.html(af854a3a-2127-422b-91ae-364da2661108)
http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00045.html(af854a3a-2127-422b-91ae-364da2661108)
http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00046.html(af854a3a-2127-422b-91ae-364da2661108)
http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00047.html(af854a3a-2127-422b-91ae-364da2661108)
http://rhn.redhat.com/errata/RHSA-2016-1079.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/90505(af854a3a-2127-422b-91ae-364da2661108)
http://www.securitytracker.com/id/1035826(af854a3a-2127-422b-91ae-364da2661108)
https://helpx.adobe.com/security/products/flash-player/apsa16-02.html(af854a3a-2127-422b-91ae-364da2661108)
https://helpx.adobe.com/security/products/flash-player/apsb16-15.html(af854a3a-2127-422b-91ae-364da2661108)
https://security.gentoo.org/glsa/201606-08(af854a3a-2127-422b-91ae-364da2661108)
https://www.exploit-db.com/exploits/46339/(af854a3a-2127-422b-91ae-364da2661108)
https://github.com/cisagov/vulnrichment/issues/196(134c704f-9b21-4f2e-91b3-4a467353bcc0)
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2016-4117(134c704f-9b21-4f2e-91b3-4a467353bcc0)

Correlaciones IOC

Sin correlaciones registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.