High severity7.5NVD Advisory· Published May 11, 2016· Updated May 6, 2026

CVE-2016-1098

Description

Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-064.

Affected products

Adobe Inc./Flash Player
cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*
Range: <=21.0.0.213
Microsoft/Edge
cpe:2.3:a:microsoft:edge:-:*:*:*:*:*:*:*
Microsoft/Internet Explorer2 versions
cpe:2.3:a:microsoft:internet_explorer:10:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:microsoft:internet_explorer:10:*:*:*:*:*:*:*
- cpe:2.3:a:microsoft:internet_explorer:11:-:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

lists.opensuse.org/opensuse-security-announce/2016-05/msg00044.htmlnvd
rhn.redhat.com/errata/RHSA-2016-1079.htmlnvd
www.securityfocus.com/bid/90618nvd
www.securitytracker.com/id/1035827nvd
docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-064nvd
helpx.adobe.com/security/products/flash-player/apsb16-15.htmlnvd

News mentions

No linked articles in our index yet.

cvss	0.488
epss	0.012
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000