Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2016-4271
HistorySep 14, 2016 - 6:59 p.m.

CVE-2016-4271

2016-09-1418:59:00
[email protected]
web.nvd.nist.gov
57
3
cve
adobe flash player
security
windows
os x
linux
access restriction bypass

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

7.2 High

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

74.3%

JSON

Adobe Flash Player before 18.0.0.375 and 19.x through 23.x before 23.0.0.162 on Windows and OS X and before 11.2.202.635 on Linux allows attackers to bypass intended access restrictions and obtain sensitive information via unspecified vectors, a different vulnerability than CVE-2016-4277 and CVE-2016-4278, aka a “local-with-filesystem Flash sandbox bypass” issue.

Affected configurations

NVD
Node
adobeflash_playerRange11.2.202.632
AND
linuxlinux_kernelMatch-
Node
microsoftwindows_10Match-
OR
microsoftwindows_8.1Match-
AND
adobeflash_playerRange22.0.0.211edge
OR
adobeflash_playerRange22.0.0.211internet_explorer
Node
applemac_os_xMatch-
OR
microsoftwindowsMatch-
AND
adobeflash_player_desktop_runtimeRange22.0.0.211
Node
adobeflash_playerRange18.0.0.366esr
AND
applemac_os_xMatch-
OR
microsoftwindowsMatch-
Node
adobeflash_playerRange22.0.0.211chrome
AND
applemac_os_xMatch-
OR
googlechrome_osMatch-
OR
linuxlinux_kernelMatch-
OR
microsoftwindowsMatch-

Social References

More

Related

redhatcve 3
ubuntucve 3
prion 3
cvelist 3
nvd 3
cve 2
checkpoint_advisories 2
altlinux 2
openvas 8
archlinux 2
nessus 8
mscve 1
redhat 1
mageia 1
kaspersky 1
suse 3
gentoo 1
redhatcve
redhatcve
CVE-2016-4271
2016-09-13 20:49:12
CVE-2016-4277
2016-09-13 20:49:02
CVE-2016-4278
2016-09-13 20:49:25
ubuntucve
ubuntucve
CVE-2016-4278
2016-09-14 00:00:00
CVE-2016-4277
2016-09-14 00:00:00
CVE-2016-4271
2016-09-14 00:00:00
prion
prion
Design/Logic Flaw
2016-09-14 18:59:00
Design/Logic Flaw
2016-09-14 18:59:00
Design/Logic Flaw
2016-09-14 18:59:00
cvelist
cvelist
CVE-2016-4278
2016-09-14 18:00:00
CVE-2016-4271
2016-09-14 18:00:00
CVE-2016-4277
2016-09-14 18:00:00
nvd
nvd
CVE-2016-4271
2016-09-14 18:59:00
CVE-2016-4277
2016-09-14 18:59:06
CVE-2016-4278
2016-09-14 18:59:07
cve
cve
CVE-2016-4277
2016-09-14 18:59:06
CVE-2016-4278
2016-09-14 18:59:07
checkpoint_advisories
checkpoint_advisories
Adobe Flash Player Security Bypass (APSB16-29: CVE-2016-4271)
2016-09-13 00:00:00
Adobe Flash Player Security Bypass (APSB16-29: CVE-2016-4277)
2016-09-15 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 6 package adobe-flash-player version 3:11-alt65
2016-09-22 00:00:00
Security fix for the ALT Linux 7 package adobe-flash-player version 3:11-alt65
2016-09-20 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2016-0315)
2022-01-28 00:00:00
Adobe Flash Player Security Update (APSB16-29) - Linux
2016-09-14 00:00:00
Adobe Flash Player Security Update (APSB16-29) - Mac OS X
2016-09-14 00:00:00
archlinux
archlinux
flashplugin: multiple issues
2016-09-15 00:00:00
lib32-flashplugin: multiple issues
2016-09-15 00:00:00
nessus
nessus
MS16-117: Security Update for Adobe Flash Player (3188128)
2016-09-13 00:00:00
RHEL 5 / 6 : flash-plugin (RHSA-2016:1865)
2016-09-15 00:00:00
Adobe Flash Player <= 22.0.0.211 Multiple Vulnerabilities (APSB16-29)
2016-09-13 00:00:00
mscve
mscve
September 2016 Adobe Flash Security Update
2016-09-13 07:00:00
redhat
redhat
(RHSA-2016:1865) Critical: flash-plugin security update
2016-09-14 00:00:00
mageia
mageia
Updated flash-player-plugin packages fix security vulnerability
2016-09-21 23:38:22
kaspersky
kaspersky
KLA10868 Multiple vulnerabilities in Adobe Flash Player
2016-09-13 00:00:00
suse
suse
Recommended update for flash-player (important)
2016-09-25 12:10:38
Recommended update for flash-player (important)
2016-09-14 21:08:55
Security update for flash-player (important)
2016-09-15 14:11:35
gentoo
gentoo
Adobe Flash Player: Multiple vulnerabilities
2016-10-29 00:00:00

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

7.2 High

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

74.3%

JSON
Related for CVE-2016-4271
redhatcve3ubuntucve3prion3cvelist3nvd3cve2checkpoint_advisories2altlinux2openvas8archlinux2nessus8mscve1redhat1mageia1kaspersky1suse3gentoo1