CVE-2016-7855
Description
Use-after-free vulnerability in Adobe Flash Player before 23.0.0.205 on Windows and OS X and before 11.2.202.643 on Linux allows remote attackers to execute arbitrary code via unspecified vectors, as exploited in the wild in October 2016.
Risk Information
Base Score
8.8
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
46.889
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| October 27, 2016 Adobe Flash Security Update for Adobe Flash Player for Windows 10 Version 1511 (for x64-based Systems) (KB3201860) | Windows |
| October 27, 2016 Adobe Flash Security Update for Adobe Flash Player for Windows 10 Version 1607 (for x64-based Systems) (KB3201860) | Windows |
| October 27, 2016 Adobe Flash Security Update for Adobe Flash Player for Windows 10 (for x64-based Systems) (KB3201860) | Windows |
| October 27, 2016 Adobe Flash Security Update for Adobe Flash Player for Windows 10 Version 1511 (KB3201860) | Windows |
| October 27, 2016 Adobe Flash Security Update for Adobe Flash Player for Windows 10 Version 1607 (KB3201860) | Windows |
| October 27, 2016 Adobe Flash Security Update for Adobe Flash Player for Windows 10 (KB3201860) | Windows |
| October 27, 2016 Adobe Flash Security Update for Adobe Flash Player for Windows Server 2012 (KB3201860) | Windows |
| October 27, 2016 Adobe Flash Security Update for Adobe Flash Player for Windows Server 2012 R2 (KB3201860) | Windows |
| October 27, 2016 Adobe Flash Security Update for Adobe Flash Player for Windows 8.1 for x64-based Systems (KB3201860) | Windows |
| October 27, 2016 Adobe Flash Security Update for Adobe Flash Player for Windows 8.1 (KB3201860) | Windows |
| Upgrade Adobe flash player 23.0.0.185 to latest version | Windows |
| Vulnerabilities CVE-2016-7855 are affected in Adobe Flash Player Plugin 23.0.0.185 | Windows |
| Vulnerabilities CVE-2016-7855 are affected in Adobe Flash Player PPAPI 23.0.0.185 | Windows |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-21674 | Security Update for Adobe Flash Player for Windows 10 Version 1511 (for x64-based Systems) (KB3201860) |
| PATCH-21675 | Security Update for Adobe Flash Player for Windows 10 Version 1607 (for x64-based Systems) (KB3201860) |
| PATCH-21673 | Security Update for Adobe Flash Player for Windows 10 (for x64-based Systems) (KB3201860) |
| PATCH-21668 | Security Update for Adobe Flash Player for Windows 10 Version 1511 (KB3201860) |
| PATCH-21669 | Security Update for Adobe Flash Player for Windows 10 Version 1607 (KB3201860) |
| PATCH-21667 | Security Update for Adobe Flash Player for Windows 10 (KB3201860) |
| PATCH-21670 | Security Update for Adobe Flash Player for Windows Server 2012 (KB3201860) |
| PATCH-21672 | Security Update for Adobe Flash Player for Windows Server 2012 R2 (KB3201860) |
| PATCH-21671 | Security Update for Adobe Flash Player for Windows 8.1 for x64-based Systems (KB3201860) |
| PATCH-21666 | Security Update for Adobe Flash Player for Windows 8.1 (KB3201860) |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234