CVE-2016-3426
Description
Unspecified vulnerability in Oracle Java SE 8u77 and Java SE Embedded 8u77 allows remote attackers to affect confidentiality via vectors related to JCE.
Risk Information
Base Score
3.1
MODERATE
Vector
CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N
EPSS Score
Exploitation Probability
1.336
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Multiple Vulnerabilities are affected in Java SE Development Kit 1.8.0 | Windows |
| Multiple vulnerabilities are fixed in Azul Zulu JDK 8 (MSI) 8.15 | Windows |
| Multiple vulnerabilities are fixed in Azul Zulu JDK 8 (MSI) (x64) 8.15 | Windows |
| Multiple vulnerabilities are fixed in IBM WebSphere 7.0.0.43 | Windows |
| Multiple vulnerabilities are fixed in IBM WebSphere 8.0.0.13 | Windows |
| Multiple vulnerabilities are fixed in IBM WebSphere 8.5.5.10 | Windows |
| Multiple vulnerabilities are affected in Java SE Development Kit 8.0.770 | Windows |
| Multiple vulnerabilities are affected in Java SE Development Kit (x64) 8.0.770 | Windows |
| Multiple vulnerabilities are affected in Java Runtime Environment 1.8 8.0.770 | Windows |
| Multiple vulnerabilities are affected in Java Runtime Environment 1.8 (x64) 8.0.770 | Windows |
| Multiple Vulnerabilities are affected in IBM Tivoli Monitoring 6.3.0 | Windows |
| Open Source Java implementation (USN-2963-1) openjdk-8-jdk_8u91-b14-0ubuntu4~16.04.1_i386.deb | Linux |
| Open Source Java implementation (USN-2963-1) openjdk-8-jdk_8u91-b14-0ubuntu4~16.04.1_amd64.deb | Linux |
| Open Source Java implementation (USN-2963-1) openjdk-8-jre_8u91-b14-0ubuntu4~16.04.1_i386.deb | Linux |
| Open Source Java implementation (USN-2963-1) openjdk-8-jre_8u91-b14-0ubuntu4~16.04.1_amd64.deb | Linux |
| Open Source Java implementation (USN-2963-1) openjdk-8-jre-zero_8u91-b14-0ubuntu4~16.04.1_i386.deb | Linux |
| Open Source Java implementation (USN-2963-1) openjdk-8-jre-zero_8u91-b14-0ubuntu4~16.04.1_amd64.deb | Linux |
| Open Source Java implementation (USN-2963-1) openjdk-8-jre-jamvm_8u91-b14-0ubuntu4~16.04.1_i386.deb | Linux |
| Open Source Java implementation (USN-2963-1) openjdk-8-jre-jamvm_8u91-b14-0ubuntu4~16.04.1_amd64.deb | Linux |
| Open Source Java implementation (USN-2963-1) openjdk-8-jdk-headless_8u91-b14-0ubuntu4~16.04.1_i386.deb | Linux |
| Open Source Java implementation (USN-2963-1) openjdk-8-jdk-headless_8u91-b14-0ubuntu4~16.04.1_amd64.deb | Linux |
| Open Source Java implementation (USN-2963-1) openjdk-8-jre-headless_8u91-b14-0ubuntu4~16.04.1_i386.deb | Linux |
| Open Source Java implementation (USN-2963-1) openjdk-8-jre-headless_8u91-b14-0ubuntu4~16.04.1_amd64.deb | Linux |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-333702 | Java SE Development Kit 8 Update 391 (32-bit) (8.0.3910.13) (JDK) (Manual Upload Required) |
| PATCH-344728 | Azul Zulu JDK 8 (MSI) (8.84.0.15) |
| PATCH-344692 | Azul Zulu JDK 8 (MSI) (x64) (8.84.0.15) |
| PATCH-349783 | Java SE Development Kit (8.0.4610.11) (Manual Upload Required) |
| PATCH-349784 | Java SE Development Kit (x64) (8.0.4610.11) (Manual Upload Required) |
| PATCH-349781 | Java Runtime Environment 1.8 (8.0.4610.11) (Manual Upload Required) |
| PATCH-349782 | Java Runtime Environment 1.8 (x64) (8.0.4610.11) (Manual Upload Required) |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234