CVE-2016-8328
⚪ Do wiadomości
Luka w Java Mission Control umożliwia nieautoryzowany dostęp do danych w Java SE.
CVSS
3.7
EPSS
0.6%
Exploit
none
Vendor
oracle
Opis źródłowy (NVD)
Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Java Mission Control). The supported version that is affected is Java SE: 8u112. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Java SE accessible data. Note: Applies to Java Mission Control Installation. CVSS v3.0 Base Score 3.7 (Integrity impacts).
brak
Brak patcha
Źródła i daty
| Źródło | Wartość |
|---|---|
| NVD – CVSS | 3.7 |
| CISA KEV (aktywnie wykorzystywane) | Nie |
| FIRST EPSS (prawdopodobieństwo exploita) | 0.6% |
| Opublikowano (NVD) | 2017-01-27 22:59:01 UTC |
| Ostatnia modyfikacja (NVD) | 2026-05-13 00:24:29 UTC |
Referencje
- http://rhn.redhat.com/errata/RHSA-2017-0175.html (secalert_us@oracle.com)
- http://www.oracle.com/technetwork/security-advisory/cpujan2017-2881727.html (secalert_us@oracle.com) [Patch, Vendor Advisory]
- http://www.securityfocus.com/bid/95581 (secalert_us@oracle.com) [Third Party Advisory, VDB Entry]
- http://www.securitytracker.com/id/1037637 (secalert_us@oracle.com)
- https://security.gentoo.org/glsa/201701-65 (secalert_us@oracle.com)
- https://security.netapp.com/advisory/ntap-20170119-0001/ (secalert_us@oracle.com)