PT-2016-5471 · Oracle+3 · Java Se+5

Published

2016-04-21

Updated

2022-05-13

CVE-2016-3449

CVSS v3.1

8.3

High

Vector

AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Oracle Java SE versions 6u113, 7u99, and 8u77 IBM Java SDK (affected versions not specified)

Description The issue allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Deployment. It enables code running under a security manager to escalate its privileges by modifying or removing the security manager.

Recommendations For Oracle Java SE versions 6u113, 7u99, and 8u77: At the moment, there is no information about a newer version that contains a fix for this vulnerability. For IBM Java SDK: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2016-3449

RHSA-2016:0677

RHSA-2016:0678

RHSA-2016:0679

RHSA-2016:0701

RHSA-2016:0702

RHSA-2016:0708

RHSA-2016:0716

RHSA-2016:1039

RHSA-2016:1430

RHSA-2016_0677

RHSA-2016_0678

RHSA-2016_0679

RHSA-2016_0701

RHSA-2016_0708

RHSA-2016_0716

RHSA-2016_1039

RHSA-2017:1216

SUSE-SU-2016:1299-1

SUSE-SU-2016:1300-1

SUSE-SU-2016:1303-1

SUSE-SU-2016:1378-1

SUSE-SU-2016:1379-1

SUSE-SU-2016:1458-1

SUSE-SU-2016:1475-1

Affected Products

Ibm Aix

Java Platform

Java Sdk

Java Se

Red Hat

Suse

PT-2016-5471 · Oracle+3 · Java Se+5

CVE-2016-3449

Related Identifiers

Affected Products

References · 55