Lucene search

[email protected]NVD:CVE-2016-0687

HistoryApr 21, 2016 - 10:59 a.m.

CVE-2016-0687

2016-04-2110:59:47

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS3

9.6

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

AI Score

6.7

Confidence

Low

EPSS

0.073

Percentile

94.1%

JSON

Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 and Java SE Embedded 8u77 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to the Hotspot sub-component.

Affected configurations

Nvd

Node

oraclejdkMatch1.6.0update113

oraclejdkMatch1.7.0update99

oraclejdkMatch1.8.0update77

oraclejreMatch1.6.0update113

oraclejreMatch1.7.0update99

oraclejreMatch1.8.0update77

References

lists.opensuse.org/opensuse-security-announce/2016-05/msg00006.html

lists.opensuse.org/opensuse-security-announce/2016-05/msg00009.html

lists.opensuse.org/opensuse-security-announce/2016-05/msg00012.html

lists.opensuse.org/opensuse-security-announce/2016-05/msg00021.html

lists.opensuse.org/opensuse-security-announce/2016-05/msg00022.html

lists.opensuse.org/opensuse-security-announce/2016-05/msg00026.html

lists.opensuse.org/opensuse-security-announce/2016-05/msg00027.html

lists.opensuse.org/opensuse-security-announce/2016-05/msg00039.html

lists.opensuse.org/opensuse-security-announce/2016-05/msg00040.html

lists.opensuse.org/opensuse-security-announce/2016-05/msg00042.html

lists.opensuse.org/opensuse-security-announce/2016-05/msg00058.html

lists.opensuse.org/opensuse-security-announce/2016-05/msg00059.html

lists.opensuse.org/opensuse-security-announce/2016-05/msg00061.html

lists.opensuse.org/opensuse-security-announce/2016-05/msg00067.html

lists.opensuse.org/opensuse-security-announce/2016-06/msg00002.html

rhn.redhat.com/errata/RHSA-2016-0650.html

rhn.redhat.com/errata/RHSA-2016-0651.html

rhn.redhat.com/errata/RHSA-2016-0675.html

rhn.redhat.com/errata/RHSA-2016-0676.html

rhn.redhat.com/errata/RHSA-2016-0677.html

rhn.redhat.com/errata/RHSA-2016-0678.html

rhn.redhat.com/errata/RHSA-2016-0679.html

rhn.redhat.com/errata/RHSA-2016-0701.html

rhn.redhat.com/errata/RHSA-2016-0702.html

rhn.redhat.com/errata/RHSA-2016-0708.html

rhn.redhat.com/errata/RHSA-2016-0716.html

rhn.redhat.com/errata/RHSA-2016-0723.html

rhn.redhat.com/errata/RHSA-2016-1039.html

www.debian.org/security/2016/dsa-3558

www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html

www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html

www.securityfocus.com/bid/86459

www.securitytracker.com/id/1035596

www.ubuntu.com/usn/USN-2963-1

www.ubuntu.com/usn/USN-2964-1

www.ubuntu.com/usn/USN-2972-1

access.redhat.com/errata/RHSA-2016:1430

access.redhat.com/errata/RHSA-2017:1216

security.gentoo.org/glsa/201606-18

security.netapp.com/advisory/ntap-20160420-0001/

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS3

9.6

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

AI Score

6.7

Confidence

Low

EPSS

0.073

Percentile

94.1%

JSON

Related for NVD:CVE-2016-0687

cve1 prion1 ubuntucve1 veracode1 cvelist1 debiancve1 nessus58 openvas46 suse15 ubuntu3 amazon3 redhat15 centos5 oraclelinux5 mageia1 debian2 f52 osv1 ibm19 gentoo1 kaspersky1 aix1 oracle1