CVE-2012-4176

CWE-20Improper Input Validation3 documents3 sources
Severity
10.0CRITICAL
EPSS
15.9%
top 5.24%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Adobe Shockwave Player
Timeline
PublishedOct 23
Latest updateMay 17

Description

Array index error in Adobe Shockwave Player before 11.6.8.638 allows attackers to execute arbitrary code via unspecified vectors.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

NVDadobe/shockwave_player11.6.7.637+49

Patches

Patch: www.adobe.comPatch: www.adobe.com

🔴Vulnerability Details

2
GHSA
GHSA-m499-9mh6-hjx6: Array index error in Adobe Shockwave Player before 112022-05-17
CVEList
CVE-2012-4176: Array index error in Adobe Shockwave Player before 112012-10-23
CVE-2012-4176 (CRITICAL CVSS 10) | Array index error in Adobe Shockwav | cvebase.io