CVE-2016-3425

MEDIUM

Oracle Java SE <8.0 - DoS

Title source: llm

Description

Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77; Java SE Embedded 8u77; and JRockit R28.3.9 allows remote attackers to affect availability via vectors related to JAXP.

References (25)

... and 5 more

Scores

CVSS v3 4.3
EPSS 0.0910
EPSS Percentile 92.5%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

Classification

Status draft

Affected Products (7)

oracle/jre
oracle/jre
oracle/jrockit
oracle/jdk
oracle/jdk
oracle/jdk
oracle/jre

Timeline

Published Apr 21, 2016
Tracked Since Feb 18, 2026