VDB
CVE-2016-4166
CVE-2016-4166
PUBLISHED
CVSS 8.800000190734863 HIGH
Unspecified vulnerability in Adobe Flash Player 21.0.0.242 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-083.
EPSS 3.67% · 88.1th percentile
Risk Scores
CVSS 3.1
8.800000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
3.67%
88.1th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| adobe | flash_player_desktop_runtime | 0 |
| n/a | n/a | n/a |
| adobe | flash_player | 0, 0, 0 |
Timeline
- Jun 16, 2016 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 8, 2023 EPSS Score
- Apr 2, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Jul 16, 2023 EPSS Score
- Sep 7, 2023 EPSS Score
References
- 1036117 vdb
- MS16-083 vendor-advisory
- openSUSE-SU-2016:1625 vendor-advisory
- RHSA-2016:1238 vendor-advisory
- openSUSE-SU-2016:1621 vendor-advisory
- SUSE-SU-2016:1613 vendor-advisory
- https://helpx.adobe.com/security/products/flash-player/apsb16-18.html url
- https://nvd.nist.gov/vuln/detail/CVE-2016-4166 advisory