9.3
CVE-2016-4128
- EPSS 2.18%
- Veröffentlicht 16.06.2016 14:59:09
- Zuletzt bearbeitet 12.04.2025 10:46:40
- Quelle psirt@adobe.com
- Teams Watchlist Login
- Unerledigt Login
Unspecified vulnerability in Adobe Flash Player 21.0.0.242 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-083.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Redhat ≫ Enterprise Linux Desktop Version5.0
Redhat ≫ Enterprise Linux Desktop Version6.0
Redhat ≫ Enterprise Linux Server Version5.0
Redhat ≫ Enterprise Linux Server Version6.0
Redhat ≫ Enterprise Linux Workstation Version5.0
Redhat ≫ Enterprise Linux Workstation Version6.0
Adobe ≫ Flash Player Desktop Runtime Version <= 21.0.0.242
Adobe ≫ Flash Player Version <= 11.2.202.621
Adobe ≫ Flash Player SwEditionesr Version <= 18.0.0.352
Adobe ≫ Flash Player SwPlatformedge Version <= 21.0.0.242
Adobe ≫ Flash Player SwPlatforminternet_explorer Version <= 21.0.0.242
Adobe ≫ Flash Player SwPlatformchrome Version <= 21.0.0.242
Suse ≫ Linux Enterprise Desktop Version12 Update-
Suse ≫ Linux Enterprise Desktop Version12 Updatesp1
Suse ≫ Linux Enterprise Workstation Extension Version12 Update-
Suse ≫ Linux Enterprise Workstation Extension Version12 Updatesp1
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2.18% | 0.828 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 8.8 | 2.8 | 5.9 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
|
| nvd@nist.gov | 9.3 | 8.6 | 10 |
AV:N/AC:M/Au:N/C:C/I:C/A:C
|
CWE-787 Out-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.