Home

CVE-2016-0448

Description

Unspecified vulnerability in the Java SE and Java SE Embedded components in Oracle Java SE 6u105, 7u91, and 8u66, and Java SE Embedded 8u65 allows remote authenticated users to affect confidentiality via vectors related to JMX.

Risk Information

Base Score
5.3
MODERATE
Vector
AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
EPSS Score
Exploitation Probability
0.331

Associated Vulnerability

VulnerabilityOS Platform
Multiple Vulnerabilities are affected in Java SE Development Kit 1.8.0Windows
Multiple vulnerabilities are fixed in Azul Zulu JDK 7 7.13Windows
Multiple vulnerabilities are fixed in Azul Zulu JDK 7 (x64) 7.13Windows
Multiple vulnerabilities are fixed in Azul Zulu JDK 8 (MSI) 8.13Windows
Multiple vulnerabilities are fixed in Azul Zulu JDK 8 (MSI) (x64) 8.13Windows
Multiple vulnerabilities are fixed in IBM WebSphere 8.0.0.13Windows
Multiple vulnerabilities are fixed in IBM WebSphere 8.5.5.9Windows
Multiple vulnerabilities are fixed in IBM WebSphere 7.0.0.41Windows
Multiple Vulnerabilities are affected in IBM Cognos Controller 10.2.1Windows
Multiple Vulnerabilities are affected in IBM Operational Decision Manager 8.0Windows
Multiple Vulnerabilities are affected in IBM Operational Decision Manager 8.5Windows
Multiple Vulnerabilities are affected in IBM Operational Decision Manager 8.6Windows
Multiple Vulnerabilities are affected in IBM Cognos Controller 10.1Windows
Multiple Vulnerabilities are affected in IBM Cognos Controller 10.1.1Windows
Multiple Vulnerabilities are affected in IBM Cognos Controller 10.2Windows
Multiple Vulnerabilities are affected in IBM Operational Decision Manager 8.7Windows
Multiple Vulnerabilities are affected in IBM Operational Decision Manager 8.8Windows
Open Source Java implementation (USN-2784-1) icedtea-7-jre-jamvm_7u85-2.6.1-5ubuntu0.15.10.1_i386.debLinux
Open Source Java implementation (USN-2784-1) icedtea-7-jre-jamvm_7u85-2.6.1-5ubuntu0.15.10.1_amd64.debLinux
Open Source Java implementation (USN-2884-1) icedtea-7-jre-jamvm_7u95-2.6.4-0ubuntu0.15.04.1_i386.debLinux
Open Source Java implementation (USN-2884-1) icedtea-7-jre-jamvm_7u95-2.6.4-0ubuntu0.15.04.1_amd64.debLinux
Open Source Java implementation (USN-2884-1) icedtea-7-jre-jamvm_7u85-2.6.1-5ubuntu0.15.10.1_i386.debLinux
Open Source Java implementation (USN-2884-1) icedtea-7-jre-jamvm_7u85-2.6.1-5ubuntu0.15.10.1_amd64.debLinux
Open Source Java implementation (USN-2885-1) icedtea-6-jre-cacao_6b38-1.13.10-0ubuntu0.12.04.1_i386.debLinux
Open Source Java implementation (USN-2885-1) icedtea-6-jre-cacao_6b38-1.13.10-0ubuntu0.12.04.1_amd64.debLinux
Open Source Java implementation (USN-2885-1) icedtea-6-jre-jamvm_6b38-1.13.10-0ubuntu0.12.04.1_i386.debLinux
Open Source Java implementation (USN-2885-1) icedtea-6-jre-jamvm_6b38-1.13.10-0ubuntu0.12.04.1_amd64.debLinux

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-333702Java SE Development Kit 8 Update 391 (32-bit) (8.0.3910.13) (JDK) (Manual Upload Required)
PATCH-344728Azul Zulu JDK 8 (MSI) (8.84.0.15)
PATCH-344692Azul Zulu JDK 8 (MSI) (x64) (8.84.0.15)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234