CVE-2016-5568
Published: October 25, 2016Last modified: July 31, 2025
Description
Unspecified vulnerability in Oracle Java SE 6u121, 7u111, and 8u102 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT.
Severity score breakdown
| Parameter | Value |
|---|---|
| Base score | 9.6 |
| Attack Vector | NETWORK |
| Attack complexity | LOW |
| Privileges required | NONE |
| User interaction | REQUIRED |
| Scope | CHANGED |
| Confidentiality | HIGH |
| Integrity impact | HIGH |
| Availability impact | HIGH |
| Vector | CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H |
Status
| Product | Release | Package | Status |
|---|---|---|---|
| Alpaquita Linux | 23 LTS | openjdk8 | Not affected (8u382_p6-r2) |
| Stream | openjdk8 | Not affected (8u382_p6-r3) | |
| Hardened Containers | 23 LTS | openjdk8 | Not affected (8u382_p6-r2) |
| Stream | openjdk8 | Not affected (8u382_p6-r3) |
References
- http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html
- http://www.securityfocus.com/bid/93621
- http://www.securitytracker.com/id/1037040
- https://lists.apache.org/thread.html/r1b103833cb5bc8466e24ff0ecc5e75b45a705334ab6a444e64e840a0%40%3Cissues.bookkeeper.apache.org%3E
- https://security.gentoo.org/glsa/201611-04
- https://security.gentoo.org/glsa/201701-43
- https://security.netapp.com/advisory/ntap-20161019-0001/