CVE-2016-3426
published 2016-04-21CVE-2016-3426: Unspecified vulnerability in Oracle Java SE 8u77 and Java SE Embedded 8u77 allows remote attackers to affect confidentiality via vectors related to JCE.
low3.1CVSS 3.0
AVNACHPRNUIRSUCLINAN
Unspecified vulnerability in Oracle Java SE 8u77 and Java SE Embedded 8u77 allows remote attackers to affect confidentiality via vectors related to JCE.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | openjdk-8 | < openjdk-8 8u91-b14-1 (sid) | openjdk-8 8u91-b14-1 (sid) |
| oracle | jdk | — | — |
| oracle | jre | — | — |
CVSS provenance
nvdv3.03.1LOWCVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N
osv9.6CRITICAL