CVE-2016-3606

Description

Unspecified vulnerability in Oracle Java SE 7u101 and 8u92 and Java SE Embedded 8u91 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Hotspot.

CVSS Metrics

• v3.0•CRITICAL•Score: 9.6CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
• v2.0•MEDIUM•Score: 6.8AV:N/AC:M/Au:N/C:P/I:P/A:P

EPSS Trends

Current EPSS score: 3.53%• Percentile: 88%

Affected Systems

• oracle•jdk

  1.7.0:update101 | 1.8.0:update91 | 1.8.0:update92

• oracle•jre

  1.7.0:update101 | 1.8.0:update91 | 1.8.0:update92

• oracle•linux

  5.0 | 6.0 | 7.0

References (24)

• http://www.ubuntu.com/usn/USN-3043-1
• http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html
• http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html
• https://security.gentoo.org/glsa/201610-08
• http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00024.html
• http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00034.html
• http://www.debian.org/security/2016/dsa-3641
• https://security.netapp.com/advisory/ntap-20160721-0001/
• https://access.redhat.com/errata/RHSA-2016:1475
• http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00033.html
• http://www.securitytracker.com/id/1036365
• https://security.gentoo.org/glsa/201701-43
• http://www.securityfocus.com/bid/91912
• http://www.ubuntu.com/usn/USN-3062-1
• http://www.securityfocus.com/bid/91787
• https://access.redhat.com/errata/RHSA-2016:1476
• http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00011.html
• https://access.redhat.com/errata/RHSA-2016:1458
• http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00032.html
• http://lists.opensuse.org/opensuse-updates/2016-08/msg00028.html
• http://www.ubuntu.com/usn/USN-3077-1
• http://rhn.redhat.com/errata/RHSA-2016-1776.html
• http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00035.html
• http://rhn.redhat.com/errata/RHSA-2016-1504.html