← Back to CVEs

CVE-2016-6936

N/A

Description

Adobe AIR SDK & Compiler before 23.0.0.257 on Windows does not support Android runtime-analytics transport security, which might allow remote attackers to obtain sensitive information by leveraging access to a network over which analytics data is sent.

CVE Details

CVSS v3.1 ScoreN/A

Published9/16/2016

Last Modified4/12/2025

Sourcenvd

Honeypot Sightings0

Affected Products

adobe:air_sdk_\&_compilerapple:mac_os_xmicrosoft:windows

Weaknesses (CWE)

CWE-200

References

http://www.securityfocus.com/bid/92926(psirt@adobe.com)

http://www.securitytracker.com/id/1036792(psirt@adobe.com)

https://helpx.adobe.com/security/products/air/apsb16-31.html(psirt@adobe.com)

https://wwws.nightwatchcybersecurity.com/2016/09/14/advisory-insecure-transmission-of-data-in-android-applications-developed-with-adobe-air-cve-2016-6936/(psirt@adobe.com)

http://www.securityfocus.com/bid/92926(af854a3a-2127-422b-91ae-364da2661108)

http://www.securitytracker.com/id/1036792(af854a3a-2127-422b-91ae-364da2661108)

https://helpx.adobe.com/security/products/air/apsb16-31.html(af854a3a-2127-422b-91ae-364da2661108)

https://wwws.nightwatchcybersecurity.com/2016/09/14/advisory-insecure-transmission-of-data-in-android-applications-developed-with-adobe-air-cve-2016-6936/(af854a3a-2127-422b-91ae-364da2661108)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.