CVE-2016-7857

Опубликовано: 08 нояб. 2016

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 9.3

CVSS3: 8.8

Описание

Adobe Flash Player versions 23.0.0.205 and earlier, 11.2.202.643 and earlier have an exploitable use-after-free vulnerability. Successful exploitation could lead to arbitrary code execution.

Релиз	Статус	Примечание
devel	released	1:20161108.1-0ubuntu1
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was released [1:20161108.1-0ubuntu0.14.04.1]]
precise	released	1:20161108.1-0ubuntu0.12.04.1
trusty	released	1:20161108.1-0ubuntu0.14.04.1
trusty/esm	DNE	trusty was released [1:20161108.1-0ubuntu0.14.04.1]
upstream	needs-triage
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE
xenial	released	1:20161108.1-0ubuntu0.16.04.1
yakkety	released	1:20161108.1-0ubuntu0.16.10.1

Показывать по

Релиз	Статус	Примечание
devel	released	11.2.202.644ubuntu1
esm-apps/xenial	released	11.2.202.644ubuntu0.16.04.1
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was released [11.2.202.644ubuntu0.14.04.1]]
precise	released	11.2.202.644ubuntu0.12.04.1
trusty	released	11.2.202.644ubuntu0.14.04.1
trusty/esm	DNE	trusty was released [11.2.202.644ubuntu0.14.04.1]
upstream	needs-triage
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE
xenial	released	11.2.202.644ubuntu0.16.04.1

Показывать по

Ссылки на источники

EPSS

Процентиль: 92%

0.08079

Низкий

9.3 Critical

CVSS2

8.8 High

CVSS3

Связанные уязвимости

CVE-2016-7857

CVSS3: 8.8

redhat

около 9 лет назад

Adobe Flash Player versions 23.0.0.205 and earlier, 11.2.202.643 and earlier have an exploitable use-after-free vulnerability. Successful exploitation could lead to arbitrary code execution.

CVE-2016-7857

CVSS3: 8.8

nvd

около 9 лет назад

Adobe Flash Player versions 23.0.0.205 and earlier, 11.2.202.643 and earlier have an exploitable use-after-free vulnerability. Successful exploitation could lead to arbitrary code execution.

GHSA-f6hw-cgjw-5hhp

CVSS3: 8.8

github

больше 3 лет назад

Adobe Flash Player versions 23.0.0.205 and earlier, 11.2.202.643 and earlier have an exploitable use-after-free vulnerability. Successful exploitation could lead to arbitrary code execution.

SUSE-SU-2016:2778-1

suse-cvrf

около 9 лет назад

Security update for flash-player

ADV160009

msrc

больше 8 лет назад

November 2016 Adobe Flash Security Update

EPSS

Процентиль: 92%

0.08079

Низкий

9.3 Critical

CVSS2

8.8 High

CVSS3

CVE-2016-7857

Описание

Пакет adobe-flashplugin

Пакет flashplugin-nonfree

Ссылки на источники

Связанные уязвимости