CVE-2016-0695

13 documents8 sources

Severity

5.9MEDIUM

EPSS

2.9%

top 13.61%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Redhat Icedtea7 Oracle JDK Oracle JRE +9 more

Timeline

PublishedApr 21

Latest updateMay 13

Description

Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77; Java SE Embedded 8u77; and JRockit R28.3.9 allows remote attackers to affect confidentiality via vectors related to Security.

CVSS vector

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 2.2 | Impact: 3.6

Affected Packages12 packages

▶NVDoracle/jrockitr28.3.9

▶NVDoracle/jdk1.6.0, 1.7.0, 1.8.0+2

▶NVDoracle/jre1.6.0, 1.7.0, 1.8.0+2

▶NVDoracle/linux5.0, 6, 7+2

▶Ubuntuopenjdk-6< 6b39-1.13.11-0ubuntu0.14.04.1

Also affects: Enterprise Linux 7.2, 6.7.z

🔴Vulnerability Details

GHSA

GHSA-5mrp-958f-q2c7: Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77; Java SE Embedded 8u77; and JRockit R28↗2022-05-13

▶

OSV

openjdk-7 vulnerabilities↗2016-05-05

▶

OSV

openjdk-8 vulnerabilities↗2016-05-05

▶

CVEList

CVE-2016-0695: Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77; Java SE Embedded 8u77; and JRockit R28↗2016-04-21

▶

OSV

CVE-2016-0695: Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77; Java SE Embedded 8u77; and JRockit R28↗2016-04-21

▶

📋Vendor Advisories

Ubuntu

OpenJDK 6 vulnerabilities↗2016-05-10

▶

Ubuntu

OpenJDK 8 vulnerabilities↗2016-05-05

▶

Ubuntu

OpenJDK 7 vulnerabilities↗2016-05-05

▶

Red Hat

OpenJDK: insufficient DSA key parameters checks (Security, 8138593)↗2016-04-19

▶

Debian

CVE-2016-0695: openjdk-8 - Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77; Java SE Embed...↗2016

▶

💬Community

Bugzilla

CVE-2016-2814 Mozilla: Buffer overflow in libstagefright with CENC offsets (MFSA 2016-44)↗2016-04-25

▶

Bugzilla

CVE-2016-0695 OpenJDK: insufficient DSA key parameters checks (Security, 8138593)↗2016-04-18

▶