CVE-2016-5554

EUVD-2016-6498
Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and Java SE Embedded 8u101 allows remote attackers to affect integrity via vectors related to JMX.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4.3 MEDIUM
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 83%
Affected Products (NVD)
VendorProductVersion
oraclejdk
1.6.0
oraclejdk
1.7.0
oraclejdk
1.8.0
oraclejdk
1.8.0
oraclejre
1.6.0
oraclejre
1.7.0
oraclejre
1.8.0
oraclejre
1.8.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
openjdk-8
sid
8u432-b06-2
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
openjdk-6
precise
Fixed 6b40-1.13.12-0ubuntu0.12.04.2
released
trusty
Fixed 6b40-1.13.12-0ubuntu0.14.04.3
released
xenial
dne
yakkety
dne
openjdk-7
precise
Fixed 7u121-2.6.8-1ubuntu0.12.04.1
released
trusty
Fixed 7u121-2.6.8-1ubuntu0.14.04.1
released
xenial
dne
yakkety
dne
openjdk-8
precise
dne
trusty
dne
xenial
Fixed 8u111-b14-2ubuntu0.16.04.2
released
yakkety
Fixed 8u111-b14-2ubuntu0.16.10.2
released
References
http://rhn.redhat.com/errata/RHSA-2016-2079.html
http://rhn.redhat.com/errata/RHSA-2016-2088.html
http://rhn.redhat.com/errata/RHSA-2016-2089.html
http://rhn.redhat.com/errata/RHSA-2016-2090.html
http://rhn.redhat.com/errata/RHSA-2016-2136.html
http://rhn.redhat.com/errata/RHSA-2016-2137.html
http://rhn.redhat.com/errata/RHSA-2016-2138.html
http://rhn.redhat.com/errata/RHSA-2016-2658.html
http://rhn.redhat.com/errata/RHSA-2016-2659.html
http://rhn.redhat.com/errata/RHSA-2017-0061.html
http://www.debian.org/security/2016/dsa-3707
http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html
http://www.securityfocus.com/bid/93637
http://www.securitytracker.com/id/1037040
http://www.ubuntu.com/usn/USN-3130-1
http://www.ubuntu.com/usn/USN-3154-1
https://access.redhat.com/errata/RHSA-2017:1216
https://security.gentoo.org/glsa/201611-04
https://security.gentoo.org/glsa/201701-43
https://security.netapp.com/advisory/ntap-20161019-0001/
http://rhn.redhat.com/errata/RHSA-2016-2079.html
http://rhn.redhat.com/errata/RHSA-2016-2088.html
http://rhn.redhat.com/errata/RHSA-2016-2089.html
http://rhn.redhat.com/errata/RHSA-2016-2090.html
http://rhn.redhat.com/errata/RHSA-2016-2136.html
http://rhn.redhat.com/errata/RHSA-2016-2137.html
http://rhn.redhat.com/errata/RHSA-2016-2138.html
http://rhn.redhat.com/errata/RHSA-2016-2658.html
http://rhn.redhat.com/errata/RHSA-2016-2659.html
http://rhn.redhat.com/errata/RHSA-2017-0061.html
http://www.debian.org/security/2016/dsa-3707
http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html
http://www.securityfocus.com/bid/93637
http://www.securitytracker.com/id/1037040
http://www.ubuntu.com/usn/USN-3130-1
http://www.ubuntu.com/usn/USN-3154-1
https://access.redhat.com/errata/RHSA-2017:1216
https://security.gentoo.org/glsa/201611-04
https://security.gentoo.org/glsa/201701-43
https://security.netapp.com/advisory/ntap-20161019-0001/