vulnerability
IBM Java: Oracle April 19 2016 CPU (CVE-2016-3443)
Severity | CVSS | Published | Added | Modified |
---|---|---|---|---|
10 | (AV:N/AC:L/Au:N/C:C/I:C/A:C) | Apr 21, 2016 | Oct 5, 2018 | Oct 5, 2018 |
Severity
10
CVSS
(AV:N/AC:L/Au:N/C:C/I:C/A:C)
Published
Apr 21, 2016
Added
Oct 5, 2018
Modified
Oct 5, 2018
Description
Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to 2D. NOTE: the previous information is from the April 2016 CPU. Oracle has not commented on third-party claims that this issue allows remote attackers to obtain sensitive information via crafted font data, which triggers an out-of-bounds read.
Solution(s)
ibm-java-upgrade-6_0_16_25ibm-java-upgrade-6_1_8_25ibm-java-upgrade-7_0_9_40ibm-java-upgrade-7_1_3_40ibm-java-upgrade-8_0_3_0

NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.