CVE-2016-0686 | SynScan

Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2016-0686

Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 and Java SE Embedded 8u77 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Serialization.

Published: Apr 21, 2016
Updated: Apr 13, 2023
CVE: CVE-2016-0686
Severity: Critical
Exploit:

CVSS v3:

Severity: Critical
Score: 9.6
AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

CVSS v2:

Severity: High
Score: 10
AV:N/AC:L/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
oracle / jdk	1.8.0-update77	1.8.0-update77.x
oracle / jdk	1.6.0-update113	1.6.0-update113.x
oracle / jdk	1.7.0-update99	1.7.0-update99.x
oracle / jre	1.6.0-update113	1.6.0-update113.x
oracle / jre	1.7.0-update99	1.7.0-update99.x
oracle / jre	1.8.0-update77	1.8.0-update77.x