Unspecified vulnerability in Oracle Java SE 6u115, 7u101, and 8u92; Java SE Embedded 8u91; and JRockit R28.3.10 allows remote attackers to affect availability via vectors related to JAXP, a different vulnerability than CVE-2016-3500.
Max CVSS
5.3
EPSS Score
1.23%
Published
2016-07-21
Updated
2022-05-13
Unspecified vulnerability in Oracle Java SE 6u115, 7u101, and 8u92; Java SE Embedded 8u91; and JRockit R28.3.10 allows remote attackers to affect availability via vectors related to JAXP, a different vulnerability than CVE-2016-3508.
Max CVSS
5.3
EPSS Score
1.07%
Published
2016-07-21
Updated
2022-05-13
Unspecified vulnerability in Oracle Java SE 6u115, 7u101, and 8u92; Java SE Embedded 8u91; and JRockit R28.3.10 allows local users to affect integrity via vectors related to Networking.
Max CVSS
2.9
EPSS Score
0.12%
Published
2016-07-21
Updated
2022-05-13
CVE-2016-3427
Known exploited
Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77; Java SE Embedded 8u77; and JRockit R28.3.9 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JMX.
Max CVSS
10.0
EPSS Score
7.09%
Published
2016-04-21
Updated
2022-05-13
CISA KEV Added
2023-05-12
Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77; Java SE Embedded 8u77; and JRockit R28.3.9 allows remote attackers to affect availability via vectors related to JAXP.
Max CVSS
5.0
EPSS Score
1.57%
Published
2016-04-21
Updated
2022-05-13
Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77; Java SE Embedded 8u77; and JRockit R28.3.9 allows remote attackers to affect confidentiality via vectors related to Security.
Max CVSS
5.9
EPSS Score
0.48%
Published
2016-04-21
Updated
2022-05-13
Unspecified vulnerability in Oracle Java SE 6u105, 7u91, and 8u66; Java SE Embedded 8u65; and JRockit R28.3.8 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the January 2016 CPU. Oracle has not commented on third-party claims that this is a heap-based buffer overflow in the readImage function, which allows remote attackers to execute arbitrary code via crafted image data.
Max CVSS
10.0
EPSS Score
4.92%
Published
2016-01-21
Updated
2022-05-13
Unspecified vulnerability in the Java SE, Java SE Embedded, and JRockit components in Oracle Java SE 8u66; Java SE Embedded 8u65; and JRockit R28.3.8 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Libraries.
Max CVSS
5.8
EPSS Score
0.44%
Published
2016-01-21
Updated
2022-05-13
8 vulnerabilities found