Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveAdobeCVE-2012-4168
HistoryAug 21, 2012 - 11:55 p.m.

CVE-2012-4168

2012-08-2123:55:01
CWE-200
adobe
web.nvd.nist.gov
44
cve-2012-4168
adobe flash player
vulnerability
remote attackers
content read
nvd

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

AI Score

6.3

Confidence

Low

EPSS

0.003

Percentile

71.1%

JSON

Adobe Flash Player before 10.3.183.23 and 11.x before 11.4.402.265 on Windows and Mac OS X, before 10.3.183.23 and 11.x before 11.2.202.238 on Linux, before 11.1.111.16 on Android 2.x and 3.x, and before 11.1.115.17 on Android 4.x; Adobe AIR before 3.4.0.2540; and Adobe AIR SDK before 3.4.0.2540 allow remote attackers to read content from a different domain via a crafted web site.

Affected configurations

Nvd
Node
adobeflash_playerRange10.310.3.183.23
OR
adobeflash_playerRange11.411.4.402.265
AND
applemac_os_xMatch-
OR
microsoftwindowsMatch-
Node
adobeflash_playerRange10.310.3.183.23
OR
adobeflash_playerRange11.211.2.202.238
AND
linuxlinux_kernelMatch-
Node
adobeflash_playerRange11.111.1.111.16
AND
googleandroidRange2.02.3.7
OR
googleandroidRange3.03.2.6
Node
adobeflash_playerRange11.111.1.115.17
AND
googleandroidRange4.04.4.4
Node
adobeairRange<3.4.0.2540
OR
adobeair_sdkRange<3.4.0.2540
VendorProductVersionCPE
adobeflash_player*cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*
applemac_os_x-cpe:2.3:o:apple:mac_os_x:-:*:*:*:*:*:*:*
microsoftwindows-cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
linuxlinux_kernel-cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
googleandroid*cpe:2.3:o:google:android:*:*:*:*:*:*:*:*
adobeair*cpe:2.3:a:adobe:air:*:*:*:*:*:*:*:*
adobeair_sdk*cpe:2.3:a:adobe:air_sdk:*:*:*:*:*:*:*:*

Related

cvelist 1
checkpoint_advisories 1
prion 1
nvd 1
ubuntucve 1
nessus 10
securityvulns 3
openvas 12
gentoo 1
redhat 2
cvelist
cvelist
CVE-2012-4168
2012-08-21 23:00:00
checkpoint_advisories
checkpoint_advisories
Adobe Flash Player Flash Plugin Cross-Domain Information Leak (APSB12-19; CVE-2012-4168)
2012-10-29 00:00:00
prion
prion
Code injection
2012-08-21 23:55:00
nvd
nvd
CVE-2012-4168
2012-08-21 23:55:01
ubuntucve
ubuntucve
CVE-2012-4168
2012-08-21 00:00:00
nessus
nessus
HP Systems Insight Manager < 7.2 Multiple Vulnerabilities
2014-03-12 00:00:00
Adobe AIR 3.x <= 3.3.0.3670 Multiple Vulnerabilities (APSB12-19)
2012-08-22 00:00:00
Adobe AIR for Mac 3.x <= 3.3.0.3670 Multiple Vulnerabilities (APSB12-19)
2012-08-22 00:00:00
securityvulns
securityvulns
Adobe Flash Player multiple security vulnerabilities
2012-09-18 00:00:00
[security bulletin] HPSBMU02948 rev.1 - HP Systems Insight Manager &#40;SIM&#41; Running on Linux and Windows, Remote Execution of Arbitrary Code, Denial of Service &#40;DoS&#41;, Disclosure of Information
2014-03-27 00:00:00
HP Systems Insight Manager multiple security vulnerabilities
2014-03-27 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 201209-01 (adobe-flash)
2012-09-15 00:00:00
Gentoo Security Advisory GLSA 201209-01 (adobe-flash)
2012-09-15 00:00:00
Adobe Flash Player Multiple Vulnerabilities - Sep12 (Linux)
2012-09-03 00:00:00
gentoo
gentoo
Adobe Flash Player: Multiple vulnerabilities
2012-09-05 00:00:00
redhat
redhat
(RHSA-2012:1173) Critical: flash-plugin security update
2012-08-15 00:00:00
(RHSA-2012:1203) Critical: flash-plugin security update
2012-08-23 00:00:00

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

AI Score

6.3

Confidence

Low

EPSS

0.003

Percentile

71.1%

JSON
Related for CVE-2012-4168
cvelist1checkpoint_advisories1prion1nvd1ubuntucve1nessus10securityvulns3openvas12gentoo1redhat2