Unspecified Vulnerability in Oracle Java SE and JRockit Products
CVE-2016-0695

5.9MEDIUM

Key Information:

Vendor

Oracle
Status
Jrockit
Jdk
Jre
Vendor
CVE Published:
21 April 2016

What is CVE-2016-0695?

An unspecified vulnerability exists in Oracle Java SE across multiple versions as well as in JRockit. This flaw allows remote attackers to potentially compromise confidentiality through specific vectors. Users of affected Java SE versions and JRockit should apply the necessary security updates to mitigate risks related to unauthorized access to sensitive information.

References

http://lists.opensuse.org/opensuse-security-announce/2016...
vendor-advisoryx_refsource_SUSE
http://rhn.redhat.com/errata/RHSA-2016-0677.html
vendor-advisoryx_refsource_REDHAT
http://www.ubuntu.com/usn/USN-2972-1
vendor-advisoryx_refsource_UBUNTU

CVSS V3.1

Score:
5.9
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2016-0695 : Unspecified Vulnerability in Oracle Java SE and JRockit Products