TROYANOSYVIRUS
Zuruck zu CVEs

CVE-2016-4117

CRITICALCISA KEV
9.8

Beschreibung

Adobe Flash Player 21.0.0.226 and earlier allows remote attackers to execute arbitrary code via unspecified vectors, as exploited in the wild in May 2016.

CVE Details

CVSS v3.1 Bewertung9.8
SchweregradCRITICAL
CVSS VektorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AngriffsvektorNETWORK
KomplexitatLOW
Erforderliche PrivilegienNONE
BenutzerinteraktionNONE
Veroffentlicht5/11/2016
Zuletzt geandert11/17/2025
Quellekev
Honeypot-Sichtungen0

CISA KEV

HerstellerAdobe
ProduktFlash Player
SchwachstellennameAdobe Flash Player Arbitrary Code Execution Vulnerability
KEV Aufnahmedatum2022-03-03
Behebungsfrist2022-03-24
Ransomware-NutzungUnknown

Betroffene Produkte

adobe:flash_playeropensuse:evergreenopensuse:opensuseredhat:enterprise_linux_desktopredhat:enterprise_linux_serverredhat:enterprise_linux_server_from_rhuiredhat:enterprise_linux_workstationsuse:linux_enterprise_desktopsuse:linux_enterprise_workstation_extension

Referenzen

http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00044.html(psirt@adobe.com)
http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00045.html(psirt@adobe.com)
http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00046.html(psirt@adobe.com)
http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00047.html(psirt@adobe.com)
http://rhn.redhat.com/errata/RHSA-2016-1079.html(psirt@adobe.com)
http://www.securityfocus.com/bid/90505(psirt@adobe.com)
http://www.securitytracker.com/id/1035826(psirt@adobe.com)
https://helpx.adobe.com/security/products/flash-player/apsa16-02.html(psirt@adobe.com)
https://helpx.adobe.com/security/products/flash-player/apsb16-15.html(psirt@adobe.com)
https://security.gentoo.org/glsa/201606-08(psirt@adobe.com)
https://www.exploit-db.com/exploits/46339/(psirt@adobe.com)
http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00044.html(af854a3a-2127-422b-91ae-364da2661108)
http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00045.html(af854a3a-2127-422b-91ae-364da2661108)
http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00046.html(af854a3a-2127-422b-91ae-364da2661108)
http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00047.html(af854a3a-2127-422b-91ae-364da2661108)
http://rhn.redhat.com/errata/RHSA-2016-1079.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/90505(af854a3a-2127-422b-91ae-364da2661108)
http://www.securitytracker.com/id/1035826(af854a3a-2127-422b-91ae-364da2661108)
https://helpx.adobe.com/security/products/flash-player/apsa16-02.html(af854a3a-2127-422b-91ae-364da2661108)
https://helpx.adobe.com/security/products/flash-player/apsb16-15.html(af854a3a-2127-422b-91ae-364da2661108)
https://security.gentoo.org/glsa/201606-08(af854a3a-2127-422b-91ae-364da2661108)
https://www.exploit-db.com/exploits/46339/(af854a3a-2127-422b-91ae-364da2661108)
https://github.com/cisagov/vulnrichment/issues/196(134c704f-9b21-4f2e-91b3-4a467353bcc0)
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2016-4117(134c704f-9b21-4f2e-91b3-4a467353bcc0)

IOC Korrelationen

Keine Korrelationen erfasst

This product uses data from the NVD API but is not endorsed or certified by the NVD.