CVE-2016-0475Oracle JDK vulnerability

7 documents7 sources
Severity
5.8MEDIUMNVD
EPSS
0.9%
top 24.93%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Oracle JDKOracle JREOracle Jrockit
Timeline
PublishedJan 21
Latest updateMay 13

Description

Unspecified vulnerability in the Java SE, Java SE Embedded, and JRockit components in Oracle Java SE 8u66; Java SE Embedded 8u65; and JRockit R28.3.8 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Libraries.

CVSS vector

AV:N/AC:M/C:P/I:P/A:NExploitability: 8.6 | Impact: 4.9

Affected Packages3 packages

NVDoracle/jrockitr28.3.8
NVDoracle/jdk1.8.0
NVDoracle/jre1.8.0

🔴Vulnerability Details

3
GHSA
GHSA-cjg9-h8wq-j253: Unspecified vulnerability in the Java SE, Java SE Embedded, and JRockit components in Oracle Java SE 8u66; Java SE Embedded 8u65; and JRockit R282022-05-13
CVEList
CVE-2016-0475: Unspecified vulnerability in the Java SE, Java SE Embedded, and JRockit components in Oracle Java SE 8u66; Java SE Embedded 8u65; and JRockit R282016-01-21
OSV
CVE-2016-0475: Unspecified vulnerability in the Java SE, Java SE Embedded, and JRockit components in Oracle Java SE 8u66; Java SE Embedded 8u65; and JRockit R282016-01-21

📋Vendor Advisories

2
Red Hat
OpenJDK: PBE incorrect key lengths (Libraries, 8138589)2016-01-19
Debian
CVE-2016-0475: openjdk-8 - Unspecified vulnerability in the Java SE, Java SE Embedded, and JRockit componen...2016

💬Community

1
Bugzilla
CVE-2016-0475 OpenJDK: PBE incorrect key lengths (Libraries, 8138589)2016-01-15
CVE-2016-0475 — Oracle JDK vulnerability | cvebase