Lucene search

OracleCVE-2016-3422

HistoryApr 21, 2016 - 11:00 a.m.

CVE-2016-3422

2016-04-2111:00:17

oracle

web.nvd.nist.gov

cve-2016-3422

oracle

java se

vulnerability

remote attackers

availability

2d vectors

nvd

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

CVSS3

4.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

LOW

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

AI Score

5.7

Confidence

Low

EPSS

0.016

Percentile

87.4%

JSON

Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 allows remote attackers to affect availability via vectors related to 2D.

Affected configurations

Nvd

Node

oraclejdkMatch1.6.0update113

oraclejdkMatch1.7.0update99

oraclejdkMatch1.8.0update77

oraclejreMatch1.6.0update113

oraclejreMatch1.7.0update99

oraclejreMatch1.8.0update77

VendorProductVersionCPE
oraclejdk1.6.0cpe:2.3:a:oracle:jdk:1.6.0:update113:*:*:*:*:*:*
oraclejdk1.7.0cpe:2.3:a:oracle:jdk:1.7.0:update99:*:*:*:*:*:*
oraclejdk1.8.0cpe:2.3:a:oracle:jdk:1.8.0:update77:*:*:*:*:*:*
oraclejre1.6.0cpe:2.3:a:oracle:jre:1.6.0:update113:*:*:*:*:*:*
oraclejre1.7.0cpe:2.3:a:oracle:jre:1.7.0:update99:*:*:*:*:*:*
oraclejre1.8.0cpe:2.3:a:oracle:jre:1.8.0:update77:*:*:*:*:*:*

Vendor	Product	Version	CPE
oracle	jdk	1.6.0	cpe:2.3:a:oracle:jdk:1.6.0:update113::::::
oracle	jdk	1.7.0	cpe:2.3:a:oracle:jdk:1.7.0:update99::::::
oracle	jdk	1.8.0	cpe:2.3:a:oracle:jdk:1.8.0:update77::::::
oracle	jre	1.6.0	cpe:2.3:a:oracle:jre:1.6.0:update113::::::
oracle	jre	1.7.0	cpe:2.3:a:oracle:jre:1.7.0:update99::::::
oracle	jre	1.8.0	cpe:2.3:a:oracle:jre:1.8.0:update77::::::