Unspecified Same-Origin Policy Bypass Vulnerability in Microsoft Internet Explorer and Microsoft Edge Adobe Flash Player

🗓️ 19 Jun 2016 00:00:00Reported by China National Vulnerability DatabaseType

Unspecified same-origin policy bypass in Adobe Flash Player for Internet Explorer and Edge allows remote attackers to steal sensitive data via malicious Flash content.

Reporter	Title	Published	Views	Family All 60
FreeBSD	flash -- multiple vulnerabilities	16 Jun 201600:00	–	freebsd
ALT Linux	Security fix for the ALT Linux 7 package adobe-flash-player version 3:11-alt63	27 Jun 201600:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 6 package adobe-flash-player version 3:11-alt63	27 Jun 201600:00	–	altlinux
Tenable Nessus	Flash Player < 11.2.202.626 / 18.0.0.360 / 22.0.0.192 Multiple Vulnerabilities	12 Jun 201600:00	–	nessus
Tenable Nessus	Adobe Flash Player <= 21.0.0.242 Multiple Vulnerabilities (APSB16-18)	17 Jun 201600:00	–	nessus
Tenable Nessus	FreeBSD : flash -- multiple vulnerabilities (0e3dfdde-35c4-11e6-8e82-002590263bf5)	20 Jun 201600:00	–	nessus
Tenable Nessus	Adobe Flash Player for Mac <= 21.0.0.242 Multiple Vulnerabilities (APSB16-18)	17 Jun 201600:00	–	nessus
Tenable Nessus	openSUSE Security Update : flash-player (openSUSE-2016-740)	20 Jun 201600:00	–	nessus
Tenable Nessus	openSUSE Security Update : flash-player (openSUSE-2016-743)	20 Jun 201600:00	–	nessus
Tenable Nessus	RHEL 6 : flash-plugin (RHSA-2016:1238)	20 Jun 201600:00	–	nessus

Vulners

Node

adobe flash_playerRange≤21.0.0.242

Source	Link
helpx	www.helpx.adobe.com/security/products/flash-player/apsb16-18.htmlhttps://technet.microsoft.com/library/security/ms16-083

21 Jun 2016 00:00Current

6.5Medium risk

Vulners AI Score6.5

CVSS 3.18.8

CVSS 29.3

EPSS0.0381