CVE-2016-4171
Unspecified vulnerability in Adobe Flash Player 21.0.0.242 and earlier allows remote attackers to execute arbitrary code via unknown vectors, as...
Basic Information
- CVE State
- PUBLISHED
- Reserved Date
- April 27, 2016
- Published Date
- June 16, 2016
- Last Updated
- February 04, 2025
- Vendor
- n/a
- Product
- n/a
- Description
- Unspecified vulnerability in Adobe Flash Player 21.0.0.242 and earlier allows remote attackers to execute arbitrary code via unknown vectors, as exploited in the wild in June 2016.
CVSS Scores
CVSS v3.1
9.8 - CRITICAL
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
SSVC Information
- Exploitation
- active
- Automatable
- Yes
- Technical Impact
- total
Exploit Status
- Exploited in the Wild
- Yes (added 2022-03-25 00:00:00 UTC) Source
References
https://security.gentoo.org/glsa/201606-08
https://helpx.adobe.com/security/products/flash-player/apsa16-03.html
http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00038.html
https://www.kb.cert.org/vuls/id/748992
https://access.redhat.com/errata/RHSA-2016:1238
http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00035.html
http://www.securitytracker.com/id/1036094
http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00031.html
http://www.securityfocus.com/bid/91184
https://helpx.adobe.com/security/products/flash-player/apsb16-18.html
Known Exploited Vulnerability Information
| Source | Added Date |
|---|---|
| CISA | 2022-03-25 00:00:00 UTC |