vulnerability

IBM AIX: java_april2016_advisory (CVE-2016-3443): Vulnerability in IBM Java SDK affects AIX

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
10	(AV:N/AC:L/Au:N/C:C/I:C/A:C)	Apr 21, 2016	Nov 30, 2017	Nov 27, 2024

Severity

CVSS

(AV:N/AC:L/Au:N/C:C/I:C/A:C)

Published

Apr 21, 2016

Added

Nov 30, 2017

Modified

Nov 27, 2024

Description

Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to 2D. NOTE: the previous information is from the April 2016 CPU. Oracle has not commented on third-party claims that this issue allows remote attackers to obtain sensitive information via crafted font data, which triggers an out-of-bounds read.

Solution

ibm-aix-java_april2016_advisory

References

CVE-2016-3443
https://attackerkb.com/topics/CVE-2016-3443
URL-https://aix.software.ibm.com/aix/efixes/security/java_april2016_advisory.asc

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today