PRIOn knowledge basePRION:CVE-2016-0687Buffer overflow
9.6 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
8.2 High
AI Score
Confidence
High
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.073 Low
EPSS
Percentile
93.9%
Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 and Java SE Embedded 8u77 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to the Hotspot sub-component.
| CPE | Name | Operator | Version |
|---|---|---|---|
| jdk | eq | 1.8.0 update77 | |
| jdk | eq | 1.6.0 update113 | |
| jdk | eq | 1.7.0 update99 | |
| jre | eq | 1.6.0 update113 | |
| jre | eq | 1.7.0 update99 | |
| jre | eq | 1.8.0 update77 |
References
lists.opensuse.org/opensuse-security-announce/2016-05/msg00006.html
lists.opensuse.org/opensuse-security-announce/2016-05/msg00009.html
lists.opensuse.org/opensuse-security-announce/2016-05/msg00012.html
lists.opensuse.org/opensuse-security-announce/2016-05/msg00021.html
lists.opensuse.org/opensuse-security-announce/2016-05/msg00022.html
lists.opensuse.org/opensuse-security-announce/2016-05/msg00026.html
lists.opensuse.org/opensuse-security-announce/2016-05/msg00027.html
lists.opensuse.org/opensuse-security-announce/2016-05/msg00039.html
lists.opensuse.org/opensuse-security-announce/2016-05/msg00040.html
lists.opensuse.org/opensuse-security-announce/2016-05/msg00042.html
lists.opensuse.org/opensuse-security-announce/2016-05/msg00058.html
lists.opensuse.org/opensuse-security-announce/2016-05/msg00059.html
lists.opensuse.org/opensuse-security-announce/2016-05/msg00061.html
lists.opensuse.org/opensuse-security-announce/2016-05/msg00067.html
lists.opensuse.org/opensuse-security-announce/2016-06/msg00002.html
rhn.redhat.com/errata/RHSA-2016-0650.html
rhn.redhat.com/errata/RHSA-2016-0651.html
rhn.redhat.com/errata/RHSA-2016-0675.html
rhn.redhat.com/errata/RHSA-2016-0676.html
rhn.redhat.com/errata/RHSA-2016-0677.html
rhn.redhat.com/errata/RHSA-2016-0678.html
rhn.redhat.com/errata/RHSA-2016-0679.html
rhn.redhat.com/errata/RHSA-2016-0701.html
rhn.redhat.com/errata/RHSA-2016-0702.html
rhn.redhat.com/errata/RHSA-2016-0708.html
rhn.redhat.com/errata/RHSA-2016-0716.html
rhn.redhat.com/errata/RHSA-2016-0723.html
rhn.redhat.com/errata/RHSA-2016-1039.html
www.debian.org/security/2016/dsa-3558
www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html
www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html
www.securityfocus.com/bid/86459
www.securitytracker.com/id/1035596
www.ubuntu.com/usn/USN-2963-1
www.ubuntu.com/usn/USN-2964-1
www.ubuntu.com/usn/USN-2972-1
access.redhat.com/errata/RHSA-2016:1430
access.redhat.com/errata/RHSA-2017:1216
security.gentoo.org/glsa/201606-18
security.netapp.com/advisory/ntap-20160420-0001/
Related
9.6 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
8.2 High
AI Score
Confidence
High
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.073 Low
EPSS
Percentile
93.9%