TROYANOSYVIRUS
Volver a CVEs

CVE-2016-4171

CRITICALCISA KEV
9.8

Descripcion

Unspecified vulnerability in Adobe Flash Player 21.0.0.242 and earlier allows remote attackers to execute arbitrary code via unknown vectors, as exploited in the wild in June 2016.

Detalles CVE

Puntuacion CVSS v3.19.8
SeveridadCRITICAL
Vector CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vector de ataqueNETWORK
ComplejidadLOW
Privilegios requeridosNONE
Interaccion usuarioNONE
Publicado6/16/2016
Ultima modificacion4/21/2026
Fuentekev
Avistamientos honeypot0

CISA KEV

VendedorAdobe
ProductoFlash Player
Nombre vulnerabilidadAdobe Flash Player Remote Code Execution Vulnerability
Fecha inclusion KEV2022-03-25
Fecha limite remediacion2022-04-15
Uso en ransomwareUnknown

Productos afectados

adobe:flash_playerapple:mac_os_xapple:macosgoogle:chrome_oslinux:linux_kernelmicrosoft:windowsmicrosoft:windows_10microsoft:windows_8.1opensuse:opensuseredhat:enterprise_linux_desktopredhat:enterprise_linux_serverredhat:enterprise_linux_workstationsuse:linux_enterprise_desktopsuse:linux_enterprise_workstation_extension

Referencias

http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00031.html(psirt@adobe.com)
http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00035.html(psirt@adobe.com)
http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00038.html(psirt@adobe.com)
http://www.securityfocus.com/bid/91184(psirt@adobe.com)
http://www.securitytracker.com/id/1036094(psirt@adobe.com)
https://access.redhat.com/errata/RHSA-2016:1238(psirt@adobe.com)
https://helpx.adobe.com/security/products/flash-player/apsa16-03.html(psirt@adobe.com)
https://helpx.adobe.com/security/products/flash-player/apsb16-18.html(psirt@adobe.com)
https://security.gentoo.org/glsa/201606-08(psirt@adobe.com)
https://www.kb.cert.org/vuls/id/748992(psirt@adobe.com)
http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00031.html(af854a3a-2127-422b-91ae-364da2661108)
http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00035.html(af854a3a-2127-422b-91ae-364da2661108)
http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00038.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/91184(af854a3a-2127-422b-91ae-364da2661108)
http://www.securitytracker.com/id/1036094(af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2016:1238(af854a3a-2127-422b-91ae-364da2661108)
https://helpx.adobe.com/security/products/flash-player/apsa16-03.html(af854a3a-2127-422b-91ae-364da2661108)
https://helpx.adobe.com/security/products/flash-player/apsb16-18.html(af854a3a-2127-422b-91ae-364da2661108)
https://security.gentoo.org/glsa/201606-08(af854a3a-2127-422b-91ae-364da2661108)
https://www.kb.cert.org/vuls/id/748992(af854a3a-2127-422b-91ae-364da2661108)
https://github.com/cisagov/vulnrichment/issues/196(134c704f-9b21-4f2e-91b3-4a467353bcc0)
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2016-4171(134c704f-9b21-4f2e-91b3-4a467353bcc0)

Correlaciones IOC

Sin correlaciones registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.