Home

CVE-2016-1019

Description

Adobe Flash Player 21.0.0.197 and earlier allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via unspecified vectors, as exploited in the wild in April 2016.

Risk Information

Base Score
9.8
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
71.432

Associated Vulnerability

VulnerabilityOS Platform
Security Update for Adobe Flash Player for Windows Server 2012 (KB3154132)Windows
Security Update for Adobe Flash Player for Windows Server 2012 R2 (KB3154132)Windows
Security Update for Adobe Flash Player for Windows 8.1 for x64-based Systems (KB3154132)Windows
Security Update for Adobe Flash Player for Windows 8.1 (KB3154132)Windows
Security Update for Adobe Flash Player for Windows 10 Version 1511 for x64-based Systems (KB3154132)Windows
Security Update for Adobe Flash Player for Windows 10 Version 1511 (KB3154132)Windows
Security Update for Adobe Flash Player for Windows 10 (KB3154132) x64 bases systemsWindows
Security Update for Adobe Flash Player for Windows 10 (KB3154132) x86 based systemsWindows
Update for Mozilla Firefox (53.0)Windows
Update for Mozilla Firefox x64 (53.0)Windows
Update for Mozilla Firefox ESR (52.1.0)Windows
Update for Mozilla Firefox ESR x64 (52.1.0)Windows
Update for Mozilla Thunderbird (52.1.0)Windows
Update for Mozilla Firefox (53.0.2)Windows
Update for Mozilla Firefox x64 (53.0.2)Windows
Update for Mozilla Firefox ESR (52.1.1)Windows
Update for Mozilla Firefox ESR x64 (52.1.1)Windows
Update for Mozilla Thunderbird (52.1.1)Windows
Update for Mozilla Firefox ESR (52.1.2)Windows
Update for Mozilla Firefox ESR x64 (52.1.2)Windows
Update for Mozilla Firefox (53.0.3)Windows
Update for Mozilla Firefox x64 (53.0.3)Windows
Upgrade Adobe flash player 21.0.0.97 to latest versionWindows
Multiple vulnerabilities affected in Adobe Flash Player Plugin 21.0.0.97Windows
Multiple vulnerabilities affected in Adobe Flash Player PPAPI 21.0.0.97Windows
Multiple vulnerabilities are fixed in Update for Mozilla Firefox For Mac (53.0)Mac
Multiple vulnerabilities are fixed in Update for Mozilla Firefox For Mac (53.0.2)Mac
Multiple vulnerabilities are fixed in Update for Mozilla Firefox For Mac (53.0.3)Mac

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-20477Security Update for Adobe Flash Player for Windows Server 2012 (KB3154132)
PATCH-20479Security Update for Adobe Flash Player for Windows Server 2012 R2 (KB3154132)
PATCH-20478Security Update for Adobe Flash Player for Windows 8.1 for x64-based Systems (KB3154132)
PATCH-20476Security Update for Adobe Flash Player for Windows 8.1 (KB3154132)
PATCH-20496Security Update for Adobe Flash Player for Windows 10 Version 1511 for x64-based Systems (KB3154132)
PATCH-20495Security Update for Adobe Flash Player for Windows 10 Version 1511 (KB3154132)
PATCH-20494Security Update for Adobe Flash Player for Windows 10 (KB3154132)
PATCH-20480Security Update for Adobe Flash Player for Windows 10 (KB3154132)
PATCH-305607Update for Mozilla Firefox (53.0)
PATCH-305608Update for Mozilla Firefox x64 (53.0)
PATCH-305615Update for Mozilla Firefox ESR (52.1.0)
PATCH-305616Update for Mozilla Firefox ESR x64 (52.1.0)
PATCH-305667Update for Mozilla Thunderbird (52.1.0)
PATCH-305694Update for Mozilla Firefox (53.0.2)
PATCH-305695Update for Mozilla Firefox x64 (53.0.2)
PATCH-305697Update for Mozilla Firefox ESR (52.1.1)
PATCH-305698Update for Mozilla Firefox ESR x64 (52.1.1)
PATCH-305744Update for Mozilla Thunderbird (52.1.1)
PATCH-305773Update for Mozilla Firefox ESR (52.1.2)
PATCH-305774Update for Mozilla Firefox ESR x64 (52.1.2)
PATCH-305776Update for Mozilla Firefox (53.0.3)
PATCH-305777Update for Mozilla Firefox x64 (53.0.3)
PATCH-607000Mozilla Firefox For Mac (124.0)
PATCH-607000Mozilla Firefox For Mac (124.0)
PATCH-607000Mozilla Firefox For Mac (124.0)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234