CVE-2016-3425 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	4.3 MEDIUM	NETWORK	LOW	LOW	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
oracle	CNA	---				---
CVE	ADP	---				---
CISA-ADP	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 91%

Vendor	Product	Version
oracle	jdk	1.6.0
oracle	jdk	1.7.0
oracle	jdk	1.8.0
oracle	jre	1.6.0
oracle	jre	1.7.0
oracle	jre	1.8.0
oracle	jrockit	r28.3.9

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

openjdk-8

sid	8u432-b06-2 fixed

Ubuntu Releases

Ubuntu Product

Codename

openjdk-6

xenial	dne
wily	Fixed 6b39-1.13.11-0ubuntu0.15.10.2 released
trusty	Fixed 6b39-1.13.11-0ubuntu0.14.04.1 released
precise	Fixed 6b39-1.13.11-0ubuntu0.12.04.1 released

openjdk-7

xenial	dne
wily	Fixed 7u101-2.6.6-0ubuntu0.15.10.1 released
trusty	Fixed 7u101-2.6.6-0ubuntu0.14.04.1 released
precise	Fixed 7u101-2.6.6-0ubuntu0.12.04.1 released

openjdk-8

xenial	Fixed 8u91-b14-0ubuntu4~16.04.1 released
wily	Fixed 8u91-b14-0ubuntu4~15.10.1 released
trusty	dne
precise	dne

References

http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00006.html

http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00009.html

http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00012.html

http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00021.html

http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00022.html

http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00026.html

http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00027.html

http://rhn.redhat.com/errata/RHSA-2016-0650.html

http://rhn.redhat.com/errata/RHSA-2016-0651.html

http://rhn.redhat.com/errata/RHSA-2016-0675.html

http://rhn.redhat.com/errata/RHSA-2016-0676.html

http://rhn.redhat.com/errata/RHSA-2016-0677.html

http://rhn.redhat.com/errata/RHSA-2016-0678.html

http://rhn.redhat.com/errata/RHSA-2016-0679.html

http://rhn.redhat.com/errata/RHSA-2016-0723.html

http://www.debian.org/security/2016/dsa-3558

http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html

http://www.securityfocus.com/bid/86434

http://www.securitytracker.com/id/1035596

http://www.ubuntu.com/usn/USN-2963-1

http://www.ubuntu.com/usn/USN-2964-1

http://www.ubuntu.com/usn/USN-2972-1

https://kc.mcafee.com/corporate/index?page=content&id=SB10159

https://security.gentoo.org/glsa/201606-18

https://security.netapp.com/advisory/ntap-20160420-0001/

http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00006.html

http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00009.html

http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00012.html

http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00021.html

http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00022.html

http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00026.html

http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00027.html

http://rhn.redhat.com/errata/RHSA-2016-0650.html

http://rhn.redhat.com/errata/RHSA-2016-0651.html

http://rhn.redhat.com/errata/RHSA-2016-0675.html

http://rhn.redhat.com/errata/RHSA-2016-0676.html

http://rhn.redhat.com/errata/RHSA-2016-0677.html

http://rhn.redhat.com/errata/RHSA-2016-0678.html

http://rhn.redhat.com/errata/RHSA-2016-0679.html

http://rhn.redhat.com/errata/RHSA-2016-0723.html

http://www.debian.org/security/2016/dsa-3558

http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html

http://www.securityfocus.com/bid/86434

http://www.securitytracker.com/id/1035596

http://www.ubuntu.com/usn/USN-2963-1

http://www.ubuntu.com/usn/USN-2964-1

http://www.ubuntu.com/usn/USN-2972-1

https://kc.mcafee.com/corporate/index?page=content&id=SB10159

https://security.gentoo.org/glsa/201606-18

https://security.netapp.com/advisory/ntap-20160420-0001/