CVE-2016-5554

Опубликовано: 18 окт. 2016

Источник: redhat

CVSS3: 4.3

CVSS2: 4.3

EPSS Низкий

Описание

Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and Java SE Embedded 8u101 allows remote attackers to affect integrity via vectors related to JMX.

A flaw was found in the way the JMX component of OpenJDK handled classloaders. An untrusted Java application or applet could use this flaw to bypass certain Java sandbox restrictions.

Ссылки на источники

Дополнительная информация

Статус:

Moderate

https://bugzilla.redhat.com/show_bug.cgi?id=1385714OpenJDK: insufficient classloader consistency checks in ClassLoaderWithRepository (JMX, 8157739)

EPSS

Процентиль: 80%

0.01399

Низкий

4.3 Medium

CVSS3

4.3 Medium

CVSS2

Связанные уязвимости

CVE-2016-5554

CVSS3: 4.3

ubuntu

почти 9 лет назад

Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and Java SE Embedded 8u101 allows remote attackers to affect integrity via vectors related to JMX.

CVE-2016-5554

CVSS3: 4.3

nvd

почти 9 лет назад

Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and Java SE Embedded 8u101 allows remote attackers to affect integrity via vectors related to JMX.

CVE-2016-5554

CVSS3: 4.3

debian

почти 9 лет назад

Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and J ...

GHSA-6cr3-4q7p-67qc

CVSS3: 4.3

github

больше 3 лет назад

Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and Java SE Embedded 8u101 allows remote attackers to affect integrity via vectors related to JMX.

ELSA-2017-0061

oracle-oval

больше 8 лет назад

ELSA-2017-0061: java-1.6.0-openjdk security update (IMPORTANT)

EPSS

Процентиль: 80%

0.01399

Низкий

4.3 Medium

CVSS3

4.3 Medium

CVSS2