Lucene search

[email protected]CVE-2016-4137

HistoryJun 16, 2016 - 2:59 p.m.

CVE-2016-4137

2016-06-1614:59:18

[email protected]

web.nvd.nist.gov

vulnerability

adobe flash player

unspecified

impact

attack vectors

ms16-083

cve-2016-4137

nvd

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

8.9 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.944 High

EPSS

Percentile

99.2%

JSON

Unspecified vulnerability in Adobe Flash Player 21.0.0.242 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-083.

Affected configurations

NVD

Node

redhatenterprise_linux_desktopMatch5.0

redhatenterprise_linux_desktopMatch6.0

redhatenterprise_linux_serverMatch5.0

redhatenterprise_linux_serverMatch6.0

redhatenterprise_linux_workstationMatch5.0

redhatenterprise_linux_workstationMatch6.0

Node

adobeflash_playerRange≤21.0.0.242chrome

adobeflash_player_desktop_runtimeRange≤21.0.0.242

AND

applemacosMatch-

googlechrome_osMatch-

linuxlinux_kernelMatch-

microsoftwindowsMatch-

Node

microsoftwindows_10Match-

microsoftwindows_8.1Match-

AND

adobeflash_playerRange≤21.0.0.242edge

adobeflash_playerRange≤21.0.0.242internet_explorer_11

Node

adobeflash_playerRange≤11.2.202.621

AND

linuxlinux_kernelMatch-

Node

adobeflash_playerRange≤18.0.0.352esr

AND

applemacosMatch-

microsoftwindowsMatch-

Node

opensuseopensuseMatch13.1

opensuseopensuseMatch13.2

suselinux_enterprise_desktopMatch12-

suselinux_enterprise_desktopMatch12sp1

suselinux_enterprise_workstation_extensionMatch12-

suselinux_enterprise_workstation_extensionMatch12sp1

Node

adobeflash_playerMatch-

AND

microsoftwindows_10Match-

microsoftwindows_10Match1511

microsoftwindows_8.1Match-

microsoftwindows_rt_8.1Match-

microsoftwindows_server_2012Match-

microsoftwindows_server_2012Match-r2

CPENameOperatorVersion
redhat:enterprise_linux_desktopredhat enterprise linux desktopeq5.0
redhat:enterprise_linux_desktopredhat enterprise linux desktopeq6.0
redhat:enterprise_linux_serverredhat enterprise linux servereq5.0
redhat:enterprise_linux_serverredhat enterprise linux servereq6.0
redhat:enterprise_linux_workstationredhat enterprise linux workstationeq5.0
redhat:enterprise_linux_workstationredhat enterprise linux workstationeq6.0

CPE	Name	Operator	Version
redhat:enterprise_linux_desktop	redhat enterprise linux desktop	eq	5.0
redhat:enterprise_linux_desktop	redhat enterprise linux desktop	eq	6.0
redhat:enterprise_linux_server	redhat enterprise linux server	eq	5.0
redhat:enterprise_linux_server	redhat enterprise linux server	eq	6.0
redhat:enterprise_linux_workstation	redhat enterprise linux workstation	eq	5.0
redhat:enterprise_linux_workstation	redhat enterprise linux workstation	eq	6.0