CVE-2016-3427
CVE-2016-3427
In short
A flaw in Oracle Java's JMX (Java Management Extensions) component allows remote attackers to compromise the security of a system without authentication, potentially stealing data, modifying it, or disrupting services.
Technical detail
An unspecified vulnerability in JMX affects Java SE versions 6u113, 7u99, 8u77, Java SE Embedded 8u77, and JRockit R28.3.9. Remote attackers can exploit this vector to gain unauthorized access, compromising confidentiality, integrity, and availability of affected systems.
Summary generated and translated by AI from the official description.
Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77; Java SE Embedded 8u77; and JRockit R28.3.9 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JMX.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00006.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-05/msg00009.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-05/msg00012.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-05/msg00021.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-05/msg00022.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-05/msg00026.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-05/msg00027.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-05/msg00039.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-05/msg00040.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-05/msg00042.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-05/msg00058.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-05/msg00059.html