Oracle Jre vulnerabilities
790 known vulnerabilities affecting oracle/jre.
Total CVEs
790
CISA KEV
14
actively exploited
Public exploits
32
Exploited in wild
16
Severity breakdown
CRITICAL205HIGH119MEDIUM346LOW118
Vulnerabilities
Page 16 of 40
CVE-2016-5548MEDIUMCVSS 6.5v1.6v1.7+1 more2017-01-27
CVE-2016-5548 [MEDIUM] CVE-2016-5548: Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries)
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 6u131, 7u121 and 8u112; Java SE Embedded: 8u111. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful
nvd
CVE-2016-5552MEDIUMCVSS 5.3v1.6v1.7+1 more2017-01-27
CVE-2016-5552 [MEDIUM] CVE-2016-5552: Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: N
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Networking). Supported versions that are affected are Java SE: 6u131, 7u121 and 8u112; Java SE Embedded: 8u111; JRockit: R28.3.12. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE,
nvd
CVE-2017-3252MEDIUMCVSS 5.8v1.6v1.7+1 more2017-01-27
CVE-2017-3252 [MEDIUM] CVE-2017-3252: Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: J
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JAAS). Supported versions that are affected are Java SE: 6u131, 7u121 and 8u112; Java SE Embedded: 8u111; JRockit: R28.3.12. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise Java SE, Java
nvd
CVE-2017-3262MEDIUMCVSS 5.3v1.82017-01-27
CVE-2017-3262 [MEDIUM] CVE-2017-3262: Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Java Mission Control). The s
Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Java Mission Control). The supported version that is affected is Java SE: 8u112. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks of this vulnerability can result in unauthorized read acce
nvd
CVE-2017-3261MEDIUMCVSS 4.3v1.6v1.7+1 more2017-01-27
CVE-2017-3261 [MEDIUM] CVE-2017-3261: Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Networking
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Networking). Supported versions that are affected are Java SE: 6u131, 7u121 and 8u112; Java SE Embedded: 8u111. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful
nvd
CVE-2016-5547MEDIUMCVSS 5.3v1.7v1.82017-01-27
CVE-2016-5547 [MEDIUM] CVE-2016-5547: Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: L
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 7u121 and 8u112; Java SE Embedded: 8u111; JRockit: R28.3.12. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE
nvd
CVE-2017-3231MEDIUMCVSS 4.3v1.6v1.7+1 more2017-01-27
CVE-2017-3231 [MEDIUM] CWE-200 CVE-2017-3231: Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Networking
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Networking). Supported versions that are affected are Java SE: 6u131, 7u121 and 8u112; Java SE Embedded: 8u111. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Su
nvd
CVE-2016-5549MEDIUMCVSS 6.5v1.7v1.82017-01-27
CVE-2016-5549 [MEDIUM] CVE-2016-5549: Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries)
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 7u121 and 8u112; Java SE Embedded: 8u111. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks
nvd
CVE-2017-3259LOWCVSS 3.7v1.6v1.7+1 more2017-01-27
CVE-2017-3259 [LOW] CVE-2017-3259: Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versi
Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 6u131, 7u121 and 8u112. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks of this vulnerability can result in unauthorized read
nvd
CVE-2016-8328LOWCVSS 3.7v1.82017-01-27
CVE-2016-8328 [LOW] CVE-2016-8328: Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Java Mission Control). The s
Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Java Mission Control). The supported version that is affected is Java SE: 8u112. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks of this vulnerability can result in unauthorized update, in
nvd
CVE-2016-5568CRITICALCVSS 9.6v1.6.0v1.7.0+1 more2016-10-25
CVE-2016-5568 [CRITICAL] CWE-284 CVE-2016-5568: Unspecified vulnerability in Oracle Java SE 6u121, 7u111, and 8u102 allows remote attackers to affec
Unspecified vulnerability in Oracle Java SE 6u121, 7u111, and 8u102 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT.
nvd
CVE-2016-5556CRITICALCVSS 9.6v1.6.0v1.7.0+1 more2016-10-25
CVE-2016-5556 [CRITICAL] CWE-284 CVE-2016-5556: Unspecified vulnerability in Oracle Java SE 6u121, 7u111, and 8u102 allows remote attackers to affec
Unspecified vulnerability in Oracle Java SE 6u121, 7u111, and 8u102 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to 2D.
nvd
CVE-2016-5582CRITICALCVSS 9.6v1.6.0v1.7.0+1 more2016-10-25
CVE-2016-5582 [CRITICAL] CVE-2016-5582: Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and Java SE Embedded 8u101 allows r
Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and Java SE Embedded 8u101 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Hotspot, a different vulnerability than CVE-2016-5573.
nvd
CVE-2016-5573HIGHCVSS 8.3v1.6.0v1.7.0+1 more2016-10-25
CVE-2016-5573 [HIGH] CWE-264 CVE-2016-5573: Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and Java SE Embedded 8u101 allows r
Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and Java SE Embedded 8u101 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Hotspot, a different vulnerability than CVE-2016-5582.
nvd
CVE-2016-5597MEDIUMCVSS 5.9v1.6.0v1.7.0+1 more2016-10-25
CVE-2016-5597 [MEDIUM] CWE-200 CVE-2016-5597: Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and Java SE Embedded 8u101 allows r
Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and Java SE Embedded 8u101 allows remote attackers to affect confidentiality via vectors related to Networking.
nvd
CVE-2016-5554MEDIUMCVSS 4.3v1.6.0v1.7.0+1 more2016-10-25
CVE-2016-5554 [MEDIUM] CVE-2016-5554: Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and Java SE Embedded 8u101 allows r
Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and Java SE Embedded 8u101 allows remote attackers to affect integrity via vectors related to JMX.
nvd
CVE-2016-5542LOWCVSS 3.1v1.6.0v1.7.0+1 more2016-10-25
CVE-2016-5542 [LOW] CVE-2016-5542: Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and Java SE Embedded 8u101 allows r
Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and Java SE Embedded 8u101 allows remote attackers to affect integrity via vectors related to Libraries.
nvd
CVE-2016-3587CRITICALCVSS 9.6v1.8.02016-07-21
CVE-2016-3587 [CRITICAL] CVE-2016-3587: Unspecified vulnerability in Oracle Java SE 8u92 and Java SE Embedded 8u91 allows remote attackers t
Unspecified vulnerability in Oracle Java SE 8u92 and Java SE Embedded 8u91 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Hotspot.
nvd
CVE-2016-3610CRITICALCVSS 9.6v1.8.02016-07-21
CVE-2016-3610 [CRITICAL] CVE-2016-3610: Unspecified vulnerability in Oracle Java SE 8u92 and Java SE Embedded 8u91 allows remote attackers t
Unspecified vulnerability in Oracle Java SE 8u92 and Java SE Embedded 8u91 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Libraries, a different vulnerability than CVE-2016-3598.
nvd
CVE-2016-3606CRITICALCVSS 9.6v1.7.0v1.8.02016-07-21
CVE-2016-3606 [CRITICAL] CVE-2016-3606: Unspecified vulnerability in Oracle Java SE 7u101 and 8u92 and Java SE Embedded 8u91 allows remote a
Unspecified vulnerability in Oracle Java SE 7u101 and 8u92 and Java SE Embedded 8u91 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Hotspot.
nvd