CVE-2016-3427

2016-04-2100:00:00

ubuntu.com

9 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.071 Low

EPSS

Percentile

93.9%

JSON

Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77; Java SE
Embedded 8u77; and JRockit R28.3.9 allows remote attackers to affect
confidentiality, integrity, and availability via vectors related to JMX.

OSVersionArchitecturePackageVersionFilename
ubuntu12.04noarchopenjdk-6< 6b39-1.13.11-0ubuntu0.12.04.1UNKNOWN
ubuntu14.04noarchopenjdk-6< 6b39-1.13.11-0ubuntu0.14.04.1UNKNOWN
ubuntu15.10noarchopenjdk-6< 6b39-1.13.11-0ubuntu0.15.10.2UNKNOWN
ubuntu12.04noarchopenjdk-7< 7u101-2.6.6-0ubuntu0.12.04.1UNKNOWN
ubuntu14.04noarchopenjdk-7< 7u101-2.6.6-0ubuntu0.14.04.1UNKNOWN
ubuntu15.10noarchopenjdk-7< 7u101-2.6.6-0ubuntu0.15.10.1UNKNOWN
ubuntu15.10noarchopenjdk-8< 8u91-b14-0ubuntu4~15.10.1UNKNOWN
ubuntu16.04noarchopenjdk-8< 8u91-b14-0ubuntu4~16.04.1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	12.04	noarch	openjdk-6	< 6b39-1.13.11-0ubuntu0.12.04.1	UNKNOWN
ubuntu	14.04	noarch	openjdk-6	< 6b39-1.13.11-0ubuntu0.14.04.1	UNKNOWN
ubuntu	15.10	noarch	openjdk-6	< 6b39-1.13.11-0ubuntu0.15.10.2	UNKNOWN
ubuntu	12.04	noarch	openjdk-7	< 7u101-2.6.6-0ubuntu0.12.04.1	UNKNOWN
ubuntu	14.04	noarch	openjdk-7	< 7u101-2.6.6-0ubuntu0.14.04.1	UNKNOWN
ubuntu	15.10	noarch	openjdk-7	< 7u101-2.6.6-0ubuntu0.15.10.1	UNKNOWN
ubuntu	15.10	noarch	openjdk-8	< 8u91-b14-0ubuntu4~15.10.1	UNKNOWN
ubuntu	16.04	noarch	openjdk-8	< 8u91-b14-0ubuntu4~16.04.1	UNKNOWN