CVE-2016-3511

high
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

Unspecified vulnerability in Oracle Java SE 7u101 and 8u92 allows local users to affect confidentiality, integrity, and availability via vectors related to Deployment.

References

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00011.html

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00024.html

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00032.html

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00033.html

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00034.html

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00035.html

http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00005.html

http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00006.html

http://lists.opensuse.org/opensuse-updates/2016-08/msg00028.html

http://rhn.redhat.com/errata/RHSA-2016-1587.html

http://rhn.redhat.com/errata/RHSA-2016-1588.html

http://rhn.redhat.com/errata/RHSA-2016-1589.html

http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html

http://www.securityfocus.com/bid/91787

http://www.securityfocus.com/bid/91990

http://www.securitytracker.com/id/1036365

https://access.redhat.com/errata/RHSA-2016:1475

https://access.redhat.com/errata/RHSA-2016:1476

https://access.redhat.com/errata/RHSA-2017:1216

https://security.gentoo.org/glsa/201610-08

https://security.netapp.com/advisory/ntap-20160721-0001/

Details

Source: MITRE

Published: 2016-07-21

Updated: 2020-09-08

Risk Information

CVSS v2

Base Score: 6.9

Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C

Impact Score: 10

Exploitability Score: 3.4

Severity: MEDIUM

CVSS v3

Base Score: 7.7

Vector: CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H

Impact Score: 6

Exploitability Score: 1

Severity: HIGH

Tenable Plugins

View all (22 total)

IDNameProductFamilySeverity
100094RHEL 6 : java-1.7.1-ibm (RHSA-2017:1216)NessusRed Hat Local Security Checks
critical
94970AIX Java Advisory : java_july2016_advisory.asc (July 2016 CPU)NessusAIX Local Security Checks
critical
94609SUSE SLES12 Security Update : java-1_8_0-ibm (SUSE-SU-2016:2726-1)NessusSuSE Local Security Checks
critical
94085GLSA-201610-08 : Oracle JRE/JDK: Multiple vulnerabilitiesNessusGentoo Local Security Checks
critical
93646SUSE SLES12 Security Update : java-1_7_1-ibm (SUSE-SU-2016:2347-1)NessusSuSE Local Security Checks
critical
93458SUSE SLES11 Security Update : java-1_7_0-ibm (SUSE-SU-2016:2286-1)NessusSuSE Local Security Checks
critical
93373SUSE SLES11 Security Update : java-1_7_1-ibm (SUSE-SU-2016:2261-1)NessusSuSE Local Security Checks
critical
93281SUSE SLED12 / SLES12 Security Update : java-1_8_0-openjdk (SUSE-SU-2016:2012-1)NessusSuSE Local Security Checks
critical
93272SUSE SLED12 / SLES12 Security Update : java-1_7_0-openjdk (SUSE-SU-2016:1997-1)NessusSuSE Local Security Checks
critical
92992openSUSE Security Update : OpenJDK7 (openSUSE-2016-982)NessusSuSE Local Security Checks
critical
92979openSUSE Security Update : java-1_8_0-openjdk (openSUSE-2016-978)NessusSuSE Local Security Checks
critical
92978openSUSE Security Update : java-1_7_0-openjdk (openSUSE-2016-977)NessusSuSE Local Security Checks
critical
92932openSUSE Security Update : java-1_7_0-openjdk (openSUSE-2016-976)NessusSuSE Local Security Checks
critical
92858RHEL 5 : java-1.7.0-ibm (RHSA-2016:1589)NessusRed Hat Local Security Checks
critical
92857RHEL 6 / 7 : java-1.7.1-ibm (RHSA-2016:1588)NessusRed Hat Local Security Checks
critical
92856RHEL 6 / 7 : java-1.8.0-ibm (RHSA-2016:1587)NessusRed Hat Local Security Checks
critical
9449Oracle Java SE 6 < Update 121 / 7 < Update 111 / 8 < Update 102 Multiple VulnerabilitiesNessus Network MonitorWeb Clients
high
92774openSUSE Security Update : java-1_8_0-openjdk (openSUSE-2016-944)NessusSuSE Local Security Checks
critical
92517Oracle Java SE Multiple Vulnerabilities (July 2016 CPU) (Unix)NessusMisc.
critical
92516Oracle Java SE Multiple Vulnerabilities (July 2016 CPU)NessusWindows
critical
92509RHEL 5 / 6 / 7 : java-1.7.0-oracle (RHSA-2016:1476)NessusRed Hat Local Security Checks
critical
92508RHEL 6 / 7 : java-1.8.0-oracle (RHSA-2016:1475)NessusRed Hat Local Security Checks
critical