← Retour aux CVEs

CVE-2016-4171

CRITICALCISA KEV

9.8

Description

Unspecified vulnerability in Adobe Flash Player 21.0.0.242 and earlier allows remote attackers to execute arbitrary code via unknown vectors, as exploited in the wild in June 2016.

Details CVE

Score CVSS v3.19.8

SeveriteCRITICAL

Vecteur CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Vecteur d'attaqueNETWORK

ComplexiteLOW

Privileges requisNONE

Interaction utilisateurNONE

Publie6/16/2016

Derniere modification4/21/2026

Sourcekev

Observations honeypot0

CISA KEV

FournisseurAdobe

ProduitFlash Player

Nom vulnerabiliteAdobe Flash Player Remote Code Execution Vulnerability

Date ajout KEV2022-03-25

Date limite remediation2022-04-15

Utilise dans ransomwareUnknown

Produits affectes

adobe:flash_playerapple:mac_os_xapple:macosgoogle:chrome_oslinux:linux_kernelmicrosoft:windowsmicrosoft:windows_10microsoft:windows_8.1opensuse:opensuseredhat:enterprise_linux_desktopredhat:enterprise_linux_serverredhat:enterprise_linux_workstationsuse:linux_enterprise_desktopsuse:linux_enterprise_workstation_extension

References

http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00031.html(psirt@adobe.com)

http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00035.html(psirt@adobe.com)

http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00038.html(psirt@adobe.com)

http://www.securityfocus.com/bid/91184(psirt@adobe.com)

http://www.securitytracker.com/id/1036094(psirt@adobe.com)

https://access.redhat.com/errata/RHSA-2016:1238(psirt@adobe.com)

https://helpx.adobe.com/security/products/flash-player/apsa16-03.html(psirt@adobe.com)

https://helpx.adobe.com/security/products/flash-player/apsb16-18.html(psirt@adobe.com)

https://security.gentoo.org/glsa/201606-08(psirt@adobe.com)

https://www.kb.cert.org/vuls/id/748992(psirt@adobe.com)

http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00031.html(af854a3a-2127-422b-91ae-364da2661108)

http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00035.html(af854a3a-2127-422b-91ae-364da2661108)

http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00038.html(af854a3a-2127-422b-91ae-364da2661108)

http://www.securityfocus.com/bid/91184(af854a3a-2127-422b-91ae-364da2661108)

http://www.securitytracker.com/id/1036094(af854a3a-2127-422b-91ae-364da2661108)

https://access.redhat.com/errata/RHSA-2016:1238(af854a3a-2127-422b-91ae-364da2661108)

https://helpx.adobe.com/security/products/flash-player/apsa16-03.html(af854a3a-2127-422b-91ae-364da2661108)

https://helpx.adobe.com/security/products/flash-player/apsb16-18.html(af854a3a-2127-422b-91ae-364da2661108)

https://security.gentoo.org/glsa/201606-08(af854a3a-2127-422b-91ae-364da2661108)

https://www.kb.cert.org/vuls/id/748992(af854a3a-2127-422b-91ae-364da2661108)

https://github.com/cisagov/vulnrichment/issues/196(134c704f-9b21-4f2e-91b3-4a467353bcc0)

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2016-4171(134c704f-9b21-4f2e-91b3-4a467353bcc0)

Correlations IOC

Aucune correlation enregistree

This product uses data from the NVD API but is not endorsed or certified by the NVD.