CVE-2016-5568

CRITICAL
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

Unspecified vulnerability in Oracle Java SE 6u121, 7u111, and 8u102 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT.

References

http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html

http://www.securityfocus.com/bid/93621

http://www.securitytracker.com/id/1037040

https://lists.apache.org/thread.html/[email protected]%3Cissues.bookkeeper.apache.org%3E

https://security.gentoo.org/glsa/201611-04

https://security.gentoo.org/glsa/201701-43

https://security.netapp.com/advisory/ntap-20161019-0001/

Details

Source: MITRE

Published: 2016-10-25

Updated: 2020-09-08

Type: CWE-284

Risk Information

CVSS v2

Base Score: 9.3

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Impact Score: 10

Exploitability Score: 8.6

Severity: HIGH

CVSS v3

Base Score: 9.6

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

Impact Score: 6

Exploitability Score: 2.8

Severity: CRITICAL

Tenable Plugins

View all (19 total)

IDNameProductFamilySeverity
119988SUSE SLES12 Security Update : java-1_6_0-ibm (SUSE-SU-2016:3010-1)NessusSuSE Local Security Checks
critical
97051AIX Java Advisory : java_oct2016_advisory.asc (October 2016 CPU)NessusAIX Local Security Checks
critical
96640GLSA-201701-43 : IcedTea: Multiple vulnerabilitiesNessusGentoo Local Security Checks
critical
95750openSUSE Security Update : java-1_7_0-openjdk (openSUSE-2016-1444)NessusSuSE Local Security Checks
critical
95711SUSE SLES12 Security Update : java-1_8_0-ibm (SUSE-SU-2016:3078-1)NessusSuSE Local Security Checks
critical
95710SUSE SLES11 Security Update : java-1_7_0-ibm (SUSE-SU-2016:3068-1)NessusSuSE Local Security Checks
critical
95623SUSE SLES12 Security Update : java-1_7_1-ibm (SUSE-SU-2016:3043-1)NessusSuSE Local Security Checks
critical
95608SUSE SLES11 Security Update : java-1_7_1-ibm (SUSE-SU-2016:3041-1)NessusSuSE Local Security Checks
critical
95607SUSE SLES11 Security Update : java-1_6_0-ibm (SUSE-SU-2016:3040-1)NessusSuSE Local Security Checks
critical
95549openSUSE Security Update : java-1_7_0-openjdk (openSUSE-2016-1389)NessusSuSE Local Security Checks
critical
95532openSUSE Security Update : java-1_8_0-openjdk (openSUSE-2016-1380)NessusSuSE Local Security Checks
critical
95423SUSE SLED12 / SLES12 Security Update : java-1_7_0-openjdk (SUSE-SU-2016:2953-1)NessusSuSE Local Security Checks
critical
95311openSUSE Security Update : java-1_7_0-openjdk (openSUSE-2016-1357)NessusSuSE Local Security Checks
critical
95294SUSE SLED12 / SLES12 Security Update : java-1_8_0-openjdk (SUSE-SU-2016:2887-1)NessusSuSE Local Security Checks
critical
95023openSUSE Security Update : java-1_8_0-openjdk (openSUSE-2016-1335)NessusSuSE Local Security Checks
critical
94595GLSA-201611-04 : Oracle JRE/JDK: Multiple vulnerabilitiesNessusGentoo Local Security Checks
critical
9712Oracle Java SE 6 < Update 131 / 7 < Update 121 / 8 < Update 112 Multiple VulnerabilitiesNessus Network MonitorWeb Clients
high
94139Oracle Java SE Multiple Vulnerabilities (October 2016 CPU) (Unix)NessusMisc.
critical
94138Oracle Java SE Multiple Vulnerabilities (October 2016 CPU)NessusWindows
critical