← Back

CVE-2016-4152

nvd nist
Published: Jun 16, 2016Modified: May 6, 2026

JSON object

Loading...
8.8
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Exploitability: 2.8 / Impact: 5.9
Source: NVD

Description

Unspecified vulnerability in Adobe Flash Player 21.0.0.242 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-083.

Affected (18)

Show all products
Redhat: Enterprise Linux Desktop, Enterprise Linux Server, Enterprise Linux Workstation · Adobe: Flash Player Desktop Runtime, Flash Player · Opensuse: Opensuse · Suse: Linux Enterprise Desktop, Linux Enterprise Workstation Extension
Redhat
3 products
Enterprise Linux Desktop
Enterprise Linux Server
Enterprise Linux Workstation
Adobe
2 products
Flash Player Desktop Runtime
Flash Player
Opensuse
1 product
Opensuse
Suse
2 products
Linux Enterprise Desktop
Linux Enterprise Workstation Extension
Configuration A
6 vulnerable
Vulnerable SoftwareAffected Versions
Redhat
Enterprise Linux Desktop
Version 5.0
Enterprise Linux Desktop
Version 6.0
Redhat
Enterprise Linux Server
Version 5.0
Enterprise Linux Server
Version 6.0
Redhat
Enterprise Linux Workstation
Version 5.0
Enterprise Linux Workstation
Version 6.0
Configuration B
1 vulnerable
Vulnerable SoftwareAffected Versions
Flash Player Desktop Runtime
Up to 21.0.0.242
Configuration C
1 vulnerable
Vulnerable SoftwareAffected Versions
Flash Player
Up to 11.2.202.621
Configuration D
1 vulnerable
Vulnerable SoftwareAffected Versions
Flash Player
Up to 18.0.0.352
Configuration E
2 vulnerable · 2 platform
Vulnerable SoftwareAffected Versions
Adobe
Flash Player
Up to 21.0.0.242
Flash Player
Up to 21.0.0.242
Running on/withPlatform Versions
Microsoft
Windows 10
All versions
Microsoft
Windows 8.1
All versions
Configuration F
1 vulnerable · 4 platform
Vulnerable SoftwareAffected Versions
Flash Player
Up to 21.0.0.242
Running on/withPlatform Versions
Apple
Mac Os X
All versions
Google
Chrome Os
All versions
Linux
Linux Kernel
All versions
Microsoft
Windows
All versions
Configuration G
6 vulnerable
Vulnerable SoftwareAffected Versions
Opensuse
Opensuse
Version 13.1
Opensuse
Version 13.2
Suse
Linux Enterprise Desktop
Version 12
Linux Enterprise Desktop
Version 12 sp1
Suse
Linux Enterprise Workstation Extension
Version 12
Linux Enterprise Workstation Extension
Version 12 sp1

Related CWEs

CWE-787
Out-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.

References (14)

Source: psirt@adobe.com
Broken LinkMailing ListThird Party Advisory
Source: psirt@adobe.com
Broken LinkMailing ListThird Party Advisory
Source: psirt@adobe.com
Broken LinkMailing ListThird Party Advisory
Source: psirt@adobe.com
Broken LinkThird Party AdvisoryVDB Entry
Source: psirt@adobe.com
Third Party Advisory
Source: psirt@adobe.com
PatchThird Party Advisory
Source: psirt@adobe.com
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Broken LinkMailing ListThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Broken LinkMailing ListThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Broken LinkMailing ListThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Broken LinkThird Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory

Timeline

No history available yet.