CVE-2016-4140
First published: Thu Jun 16 2016(Updated: )
Unspecified vulnerability in Adobe Flash Player 21.0.0.242 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-083.
Credit: psirt@adobe.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Red Hat Enterprise Linux Desktop | =5.0 | |
| Red Hat Enterprise Linux Desktop | =6.0 | |
| Red Hat Enterprise Linux Server | =5.0 | |
| Red Hat Enterprise Linux Server | =6.0 | |
| Red Hat Enterprise Linux Workstation | =5.0 | |
| Red Hat Enterprise Linux Workstation | =6.0 | |
| Macromedia Flash Player | <=21.0.0.242 | |
| Adobe Flash Player | <=21.0.0.242 | |
| macOS | ||
| Chrome OS | ||
| Linux Kernel | ||
| Microsoft Windows Operating System | ||
| Windows 10 | ||
| Microsoft Windows | ||
| Macromedia Flash Player | <=21.0.0.242 | |
| Macromedia Flash Player | <=21.0.0.242 | |
| Macromedia Flash Player | <=11.2.202.621 | |
| Macromedia Flash Player | <=18.0.0.352 | |
| openSUSE | =13.1 | |
| openSUSE | =13.2 | |
| SUSE Linux Enterprise Desktop | =12 | |
| SUSE Linux Enterprise Desktop | =12-sp1 | |
| SUSE Linux Workstation Extension | =12 | |
| SUSE Linux Workstation Extension | =12-sp1 | |
| Macromedia Flash Player | ||
| Windows 10 | =1511 | |
| Microsoft Windows RT | ||
| Microsoft Windows Server | ||
| Microsoft Windows Server | =r2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00031.html
- http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00035.html
- http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00038.html
- http://www.securitytracker.com/id/1036117
- https://access.redhat.com/errata/RHSA-2016:1238
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-083
- https://helpx.adobe.com/security/products/flash-player/apsb16-18.html
Frequently Asked Questions
What is the severity of CVE-2016-4140?
The severity of CVE-2016-4140 is currently unspecified due to unknown impact and attack vectors.
How do I fix CVE-2016-4140?
To fix CVE-2016-4140, you should update Adobe Flash Player to a version later than 21.0.0.242.
Which versions of Adobe Flash Player are affected by CVE-2016-4140?
Adobe Flash Player versions 21.0.0.242 and earlier are affected by CVE-2016-4140.
Is Adobe Flash Player for Internet Explorer vulnerable to CVE-2016-4140?
Yes, Adobe Flash Player used in Internet Explorer 10 and 11 is vulnerable to CVE-2016-4140.
Does CVE-2016-4140 affect other operating systems?
CVE-2016-4140 primarily affects certain versions of Red Hat Enterprise Linux and Adobe Flash Player on Windows environments.
- agent/references
- agent/severity
- agent/author
- agent/remedy
- agent/type
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/redhat
- canonical/red hat enterprise linux desktop
- version/red hat enterprise linux desktop/5.0
- version/red hat enterprise linux desktop/6.0
- canonical/red hat enterprise linux server
- version/red hat enterprise linux server/5.0
- version/red hat enterprise linux server/6.0
- canonical/red hat enterprise linux workstation
- version/red hat enterprise linux workstation/5.0
- version/red hat enterprise linux workstation/6.0
- vendor/adobe
- canonical/macromedia flash player
- version/macromedia flash player/21.0.0.242
- canonical/adobe flash player
- version/adobe flash player/21.0.0.242
- vendor/apple
- canonical/macos
- vendor/google
- canonical/chrome os
- vendor/linux
- canonical/linux kernel
- vendor/microsoft
- canonical/microsoft windows operating system
- canonical/windows 10
- canonical/microsoft windows
- version/macromedia flash player/11.2.202.621
- version/macromedia flash player/18.0.0.352
- vendor/opensuse
- canonical/opensuse
- version/opensuse/13.1
- version/opensuse/13.2
- vendor/suse
- canonical/suse linux enterprise desktop
- version/suse linux enterprise desktop/12
- version/suse linux enterprise desktop/12-sp1
- canonical/suse linux workstation extension
- version/suse linux workstation extension/12
- version/suse linux workstation extension/12-sp1
- version/windows 10/1511
- canonical/microsoft windows rt
- canonical/microsoft windows server
- version/microsoft windows server/r2