← Back

CVE-2016-0978

nvd nist
Published: Feb 10, 2016Modified: May 6, 2026

JSON object

Loading...
8.8
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Exploitability: 2.8 / Impact: 5.9
Source: NVD

Description

Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and before 11.2.202.569 on Linux, Adobe AIR before 20.0.0.260, Adobe AIR SDK before 20.0.0.260, and Adobe AIR SDK & Compiler before 20.0.0.260 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-0964, CVE-2016-0965, CVE-2016-0966, CVE-2016-0967, CVE-2016-0968, CVE-2016-0969, CVE-2016-0970, CVE-2016-0972, CVE-2016-0976, CVE-2016-0977, CVE-2016-0979, CVE-2016-0980, and CVE-2016-0981.

Affected (9)

Adobe
5 products
Flash Player
Flash Player Desktop Runtime
Air Desktop Runtime
Air Sdk
Air Sdk & Compiler
Configuration A
1 vulnerable
Vulnerable SoftwareAffected Versions
Flash Player
Up to 11.2.202.559
Configuration B
1 vulnerable
Vulnerable SoftwareAffected Versions
Flash Player Desktop Runtime
Up to 20.0.0.286
Configuration C
1 vulnerable
Vulnerable SoftwareAffected Versions
Flash Player
Up to 18.0.0.326
Configuration D
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Flash Player
Up to 20.0.0.272
Running on/withPlatform Versions
Microsoft
Windows 8.1
All versions
Configuration E
1 vulnerable · 2 platform
Vulnerable SoftwareAffected Versions
Flash Player
Up to 20.0.0.286
Running on/withPlatform Versions
Google
Chrome Os
All versions
Linux
Linux Kernel
All versions
Configuration F
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Flash Player
Up to 20.0.0.272
Running on/withPlatform Versions
Microsoft
Windows 10
All versions
Configuration G
1 vulnerable
Vulnerable SoftwareAffected Versions
Air Desktop Runtime
Up to 20.0.0.233
Configuration H
1 vulnerable
Vulnerable SoftwareAffected Versions
Air Sdk
Up to 20.0.0.233
Configuration I
1 vulnerable · 4 platform
Vulnerable SoftwareAffected Versions
Air Sdk & Compiler
Up to 20.0.0.233
Running on/withPlatform Versions
Apple
Iphone Os
All versions
Apple
Mac Os X
All versions
Google
Android
All versions
Microsoft
Windows
All versions

Related CWEs

CWE-787
Out-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.

References (16)

Source: psirt@adobe.com
Broken LinkThird Party Advisory
Source: psirt@adobe.com
Broken LinkThird Party Advisory
Source: psirt@adobe.com
Broken LinkThird Party Advisory
Source: psirt@adobe.com
Broken LinkThird Party Advisory
Source: psirt@adobe.com
Third Party Advisory
Source: psirt@adobe.com
Broken LinkThird Party AdvisoryVDB Entry
Source: psirt@adobe.com
PatchVendor Advisory
Source: psirt@adobe.com
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Broken LinkThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Broken LinkThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Broken LinkThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Broken LinkThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Broken LinkThird Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory

Timeline

No history available yet.