High severity8.8NVD Advisory· Published Nov 8, 2016· Updated Jun 17, 2026
CVE-2016-7861
CVE-2016-7861
Description
Adobe Flash Player versions 23.0.0.205 and earlier, 11.2.202.643 and earlier have an exploitable type confusion vulnerability. Successful exploitation could lead to arbitrary code execution.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
14cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*range: <=23.0.0.205
- cpe:2.3:a:adobe:flash_player:*:*:*:*:*:chrome:*:*range: <=23.0.0.205
- cpe:2.3:a:adobe:flash_player:*:*:*:*:*:edge:*:*range: <=23.0.0.205
- cpe:2.3:a:adobe:flash_player:*:*:*:*:*:internet_explorer:*:*range: <=23.0.0.205
- (no CPE)range: <=23.0.0.205, <=11.2.202.643
- cpe:2.3:a:adobe:flash_player_for_linux:*:*:*:*:*:*:*:*Range: <=11.2.202.643
cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server:5.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:redhat:enterprise_linux_server:5.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_workstation:5.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:redhat:enterprise_linux_workstation:5.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*
- osv-coords2 versionspkg:rpm/suse/flash-player&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP1pkg:rpm/suse/flash-player&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP1
< 11.2.202.644-149.1+ 1 more
- (no CPE)range: < 11.2.202.644-149.1
- (no CPE)range: < 11.2.202.644-149.1
Patches
Vulnerability mechanics
References
7- docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-141nvdPatchVendor Advisory
- helpx.adobe.com/security/products/flash-player/apsb16-37.htmlnvdPatchVendor Advisory
- rhn.redhat.com/errata/RHSA-2016-2676.htmlnvdThird Party Advisory
- www.securityfocus.com/bid/94151nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1037240nvdThird Party AdvisoryVDB Entry
- www.zerodayinitiative.com/advisories/ZDI-16-600nvdThird Party AdvisoryVDB Entry
- security.gentoo.org/glsa/201611-18nvdThird Party Advisory
News mentions
0No linked articles in our index yet.