CVSS v2 metrics

Base Score	3.7
Base Metrics	AV:L/AC:H/Au:N/C:P/I:P/A:P
Access Vector	Local
Access Complexity	High
Authentication	None
Confidentiality Impact	Partial
Integrity Impact	Partial
Availability Impact	Partial

CVSS v3 metrics

CVSS3 Base Score	7
CVSS3 Base Metrics	CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
Attack Vector	Local
Attack Complexity	High
Privileges Required	None
User Interaction	Required
Scope	Unchanged
Confidentiality	High
Integrity Impact	High
Availability Impact	High

Find out more about Red Hat support for the Common Vulnerability Scoring System (CVSS).

Red Hat Security Errata

Platform	Errata	Release Date
Red Hat Satellite 5.6 (RHEL v.6) (java-1.7.1-ibm)	RHSA-2017:1216	2017-05-09
Red Hat Enterprise Linux Supplementary (v. 6) (java-1.8.0-ibm)	RHSA-2016:1587	2016-08-10
Oracle Java for Red Hat Enterprise Linux 7 (java-1.8.0-oracle)	RHSA-2016:1475	2016-07-21
Oracle Java for Red Hat Enterprise Linux 7 (java-1.7.0-oracle)	RHSA-2016:1476	2016-07-21
Red Hat Satellite 5.7 (RHEL v.6) (java-1.7.1-ibm)	RHSA-2017:1216	2017-05-09
Red Hat Enterprise Linux Supplementary (v. 6) (java-1.7.1-ibm)	RHSA-2016:1588	2016-08-10
Oracle Java for Red Hat Enterprise Linux 6 (java-1.7.0-oracle)	RHSA-2016:1476	2016-07-21
Oracle Java for Red Hat Enterprise Linux 6 (java-1.8.0-oracle)	RHSA-2016:1475	2016-07-21
Oracle Java for Red Hat Enterprise Linux 5 (java-1.7.0-oracle)	RHSA-2016:1476	2016-07-21
Red Hat Enterprise Linux Supplementary (v. 7) (java-1.8.0-ibm)	RHSA-2016:1587	2016-08-10
Red Hat Enterprise Linux Supplementary 5 (java-1.7.0-ibm)	RHSA-2016:1589	2016-08-10
Red Hat Enterprise Linux Supplementary (v. 7) (java-1.7.1-ibm)	RHSA-2016:1588	2016-08-10

External References

• http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html#AppendixJAVA