CVE-2016-1010 — Vulnetix

Try Vulnetix Request Demo

CVE-2016-1010 PUBLISHED KEV

Integer overflow in Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21.0.0.182 on Windows and OS X and before 11.2.202.577 on Linux, Adobe AIR before 21.0.0.176, Adobe AIR SDK before 21.0.0.176, and Adobe AIR SDK & Compiler before 21.0.0.176 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-0963 and CVE-2016-0993.

EPSS 29.99% · 96.6th percentile

Risk Scores

EPSS Score

29.99%

96.6th percentile

Affected Products

Vendor	Product	Versions
Ubuntu:14.04:LTS	flashplugin-nonfree	0, 11.2.202.310ubuntu1, 11.2.202.327ubuntu0.13.10.1

Timeline

Mar 10, 2016 CVE Published
Mar 10, 2016 PoC Published
Mar 11, 2016 PoC Published
Feb 4, 2022 EPSS Score
May 19, 2022 EPSS Score
May 25, 2022 CISA KEV Added
Sep 1, 2022 EPSS Score
Oct 23, 2022 EPSS Score
Feb 4, 2023 EPSS Score
Mar 28, 2023 EPSS Score
May 19, 2023 EPSS Score
Jun 14, 2023 PoC Published

References

https://ubuntu.com/security/CVE-2016-1010 third-party-advisory
https://helpx.adobe.com/security/products/flash-player/apsb16-08.html third-party-advisory
https://www.cve.org/CVERecord?id=CVE-2016-1010 third-party-advisory
https://www.cisa.gov/known-exploited-vulnerabilities-catalog third-party-advisory

Open in Interactive Console →