CVE-2016-0475
Advisory lineage Upstream: 0 Downstream: 9
Modified
Published: 21 Jan 2016, 02:00
Last modified:05 Aug 2024, 22:22
Vulnerability Summary
Overall Risk (default)
low
23/100 CVSS Score
5.8 MEDIUM
v2.0 (nvd)
EPSS Score
0.84% LOW
1% probability -0.16%
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
21 Jan 2016, 02:00
Published
Vulnerability first disclosed
05 Aug 2024, 22:22
Last Modified
Vulnerability information updated
Description
Unspecified vulnerability in the Java SE, Java SE Embedded, and JRockit components in Oracle Java SE 8u66; Java SE Embedded 8u65; and JRockit R28.3.8 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Libraries.
CVSS Metrics
- v2.0•MEDIUM•Score: 5.8AV:N/AC:M/Au:N/C:P/I:P/A:N
EPSS Trends
Current EPSS score: 0.84%• Percentile: 75%
Affected Systems
- oracle•jdk
1.8.0:update66
- oracle•jre
1.8.0:update66
- oracle•jrockit
r28.3.8
References (9)
- http://www.securitytracker.com/id/1034715
- https://security.gentoo.org/glsa/201610-08
- http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html
- http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html
- http://rhn.redhat.com/errata/RHSA-2016-0049.html
- https://kc.mcafee.com/corporate/index?page=content&id=SB10148
- http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00038.html
- http://rhn.redhat.com/errata/RHSA-2016-0055.html
- http://rhn.redhat.com/errata/RHSA-2016-0050.html