Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Java Mission Control). The supported version that is affected is Java SE: 8u112. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE accessible data. Note: Applies to Java Mission Control Installation. CVSS v3.0 Base Score 5.3 (Confidentiality impacts).
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Jdk | Oracle | 1.8-update_112 (including) | 1.8-update_112 (including) |
| Jre | Oracle | 1.8-update_112 (including) | 1.8-update_112 (including) |
| Oracle Java for Red Hat Enterprise Linux 6 | RedHat | java-1.8.0-oracle-1:1.8.0.121-1jpp.1.el6_8 | * |
| Oracle Java for Red Hat Enterprise Linux 7 | RedHat | java-1.8.0-oracle-1:1.8.0.121-1jpp.1.el7_3 | * |
References
- http://rhn.redhat.com/errata/RHSA-2017-0175.html
- http://www.oracle.com/technetwork/security-advisory/cpujan2017-2881727.html
- http://www.securityfocus.com/bid/95578
- http://www.securitytracker.com/id/1037637
- https://security.gentoo.org/glsa/201701-65
- https://security.netapp.com/advisory/ntap-20170119-0001/
- http://rhn.redhat.com/errata/RHSA-2017-0175.html
- http://www.oracle.com/technetwork/security-advisory/cpujan2017-2881727.html
- http://www.securityfocus.com/bid/95578
- http://www.securitytracker.com/id/1037637
- https://security.gentoo.org/glsa/201701-65
- https://security.netapp.com/advisory/ntap-20170119-0001/