ID CVE-2016-3449
Summary Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Deployment.
References
Vulnerable Configurations
  • cpe:2.3:a:oracle:jdk:1.6.0:update_113:*:*:*:*:*:*
    cpe:2.3:a:oracle:jdk:1.6.0:update_113:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jdk:1.7.0:update_99:*:*:*:*:*:*
    cpe:2.3:a:oracle:jdk:1.7.0:update_99:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jdk:1.8.0:update_77:*:*:*:*:*:*
    cpe:2.3:a:oracle:jdk:1.8.0:update_77:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jre:1.6.0:update_113:*:*:*:*:*:*
    cpe:2.3:a:oracle:jre:1.6.0:update_113:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jre:1.7.0:update_99:*:*:*:*:*:*
    cpe:2.3:a:oracle:jre:1.7.0:update_99:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jre:1.8.0:update_77:*:*:*:*:*:*
    cpe:2.3:a:oracle:jre:1.8.0:update_77:*:*:*:*:*:*
CVSS
Base: 7.6 (as of 05-01-2018 - 02:30)
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
NETWORK HIGH NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:N/AC:H/Au:N/C:C/I:C/A:C
redhat via4
advisories
  • rhsa
    id RHSA-2016:0677
  • rhsa
    id RHSA-2016:0678
  • rhsa
    id RHSA-2016:0679
  • rhsa
    id RHSA-2016:0701
  • rhsa
    id RHSA-2016:0702
  • rhsa
    id RHSA-2016:0708
  • rhsa
    id RHSA-2016:0716
  • rhsa
    id RHSA-2016:1039
  • rhsa
    id RHSA-2016:1430
  • rhsa
    id RHSA-2017:1216
refmap via4
bid 86485
confirm
gentoo GLSA-201606-18
sectrack 1035596
suse
  • SUSE-SU-2016:1299
  • SUSE-SU-2016:1300
  • SUSE-SU-2016:1303
  • SUSE-SU-2016:1378
  • SUSE-SU-2016:1379
  • SUSE-SU-2016:1388
  • SUSE-SU-2016:1458
  • SUSE-SU-2016:1475
Last major update 05-01-2018 - 02:30
Published 21-04-2016 - 11:00
Back to Top