VDB

CVE-2016-7892

CVE-2016-7892 PUBLISHED KEV CVSS 9.300000190734863 CRITICAL

Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable use after free vulnerability in the TextField class. Successful exploitation could lead to arbitrary code execution.

EPSS 21.97% · 95.9th percentile

Risk Scores

CVSS 2.0
9.300000190734863
EPSS Score
21.97%
95.9th percentile

Affected Products

VendorProductVersions
n/aAdobe Flash Player 23.0.0.207 and earlier, 11.2.202.644 and earlier*
adobeflash_player_desktop_runtime0
adobeflash_player0, 0, 0

Timeline

  • Jan 19, 1970 VulnCheck XDB Entry
  • Jul 5, 2015 VulnCheck KEV Exploitation
  • Jul 21, 2015 VulnCheck KEV Exploitation
  • Aug 10, 2015 VulnCheck KEV Exploitation
  • Feb 3, 2016 VulnCheck KEV Exploitation
  • Dec 13, 2016 PoC Published
  • Dec 15, 2016 CVE Published
  • Jan 9, 2017 VulnCheck KEV Exploitation
  • Aug 18, 2017 PoC Published
  • Feb 4, 2018 VulnCheck KEV Exploitation
  • Jun 20, 2018 VulnCheck KEV Exploitation
  • Sep 5, 2018 VulnCheck KEV Exploitation
Open in Interactive Console →
$ Console Community · 100/wk Open console ›