Lucene search

K
ubuntucveUbuntu.comUB:CVE-2016-7855
HistoryNov 01, 2016 - 12:00 a.m.

CVE-2016-7855

2016-11-0100:00:00
ubuntu.com
ubuntu.com
20

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS

0.133

Percentile

95.7%

Use-after-free vulnerability in Adobe Flash Player before 23.0.0.205 on
Windows and OS X and before 11.2.202.643 on Linux allows remote attackers
to execute arbitrary code via unspecified vectors, as exploited in the wild
in October 2016.

OSVersionArchitecturePackageVersionFilename
ubuntu12.04noarchadobe-flashplugin<Β 1:20161026.1-0ubuntu0.12.04.1UNKNOWN
ubuntu14.04noarchadobe-flashplugin<Β 1:20161026.1-0ubuntu0.14.04.1UNKNOWN
ubuntu16.04noarchadobe-flashplugin<Β 1:20161026.1-0ubuntu0.16.04.1UNKNOWN
ubuntu16.10noarchadobe-flashplugin<Β 1:20161026.1-0ubuntu0.16.10.1UNKNOWN
ubuntu12.04noarchflashplugin-nonfree<Β 11.2.202.643ubuntu0.12.04.1UNKNOWN
ubuntu14.04noarchflashplugin-nonfree<Β 11.2.202.643ubuntu0.14.04.1UNKNOWN
ubuntu16.04noarchflashplugin-nonfree<Β 11.2.202.643ubuntu0.16.04.1UNKNOWN
ubuntu16.10noarchflashplugin-nonfree<Β 11.2.202.643ubuntu0.16.10.1UNKNOWN

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS

0.133

Percentile

95.7%