2.9

CVE-2016-3485

Unspecified vulnerability in Oracle Java SE 6u115, 7u101, and 8u92; Java SE Embedded 8u91; and JRockit R28.3.10 allows local users to affect integrity via vectors related to Networking.

Data is provided by the National Vulnerability Database (NVD)
OracleJdk Version1.6.0 Updateupdate115
OracleJdk Version1.7.0 Updateupdate101
OracleJdk Version1.8.0 Updateupdate91
OracleJdk Version1.8.0 Updateupdate92
OracleJre Version1.6.0 Updateupdate115
OracleJre Version1.7.0 Updateupdate101
OracleJre Version1.8.0 Updateupdate91
OracleJre Version1.8.0 Updateupdate92
OracleJrockit Versionr28.3.10
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.04% 0.128
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 2.9 1.4 1.4
CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N
nvd@nist.gov 2.1 3.9 2.9
AV:L/AC:L/Au:N/C:N/I:P/A:N
http://www.securityfocus.com/bid/91787
Third Party Advisory
VDB Entry