CVE-2016-3503

EUVD-2016-4529
Unspecified vulnerability in Oracle Java SE 6u115, 7u101, and 8u92 allows local users to affect confidentiality, integrity, and availability via vectors related to Install.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.7 HIGH
LOCAL
HIGH
NONE
CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 25%
Affected Products (NVD)
VendorProductVersion
oraclejdk
1.6.0
oraclejdk
1.7.0
oraclejdk
1.8.0
oraclejre
1.6.0
oraclejre
1.7.0
oraclejre
1.8.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
openjdk-8
sid
8u432-b06-2
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
icedtea-web
precise
not-affected
trusty
dne
wily
not-affected
xenial
not-affected
openjdk-6
precise
not-affected
trusty
dne
wily
not-affected
xenial
dne
openjdk-7
precise
not-affected
trusty
dne
wily
not-affected
xenial
dne
openjdk-8
precise
dne
trusty
dne
wily
not-affected
xenial
not-affected
References
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00011.html
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00024.html
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00032.html
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00033.html
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00034.html
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00035.html
http://lists.opensuse.org/opensuse-updates/2016-08/msg00028.html
http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html
http://www.securityfocus.com/bid/91787
http://www.securityfocus.com/bid/91996
http://www.securitytracker.com/id/1036365
https://access.redhat.com/errata/RHSA-2016:1475
https://access.redhat.com/errata/RHSA-2016:1476
https://access.redhat.com/errata/RHSA-2016:1477
https://security.gentoo.org/glsa/201610-08
https://security.netapp.com/advisory/ntap-20160721-0001/
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00011.html
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00024.html
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00032.html
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00033.html
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00034.html
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00035.html
http://lists.opensuse.org/opensuse-updates/2016-08/msg00028.html
http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html
http://www.securityfocus.com/bid/91787
http://www.securityfocus.com/bid/91996
http://www.securitytracker.com/id/1036365
https://access.redhat.com/errata/RHSA-2016:1475
https://access.redhat.com/errata/RHSA-2016:1476
https://access.redhat.com/errata/RHSA-2016:1477
https://security.gentoo.org/glsa/201610-08
https://security.netapp.com/advisory/ntap-20160721-0001/