U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

Vulnerability Change Records for CVE-2016-6325

Change History

Modified Analysis by NIST 10/14/2016 5:42:45 AM

Action Type Old Value New Value
Added CPE Configuration

								
							
							
						
Configuration 1
     AND
          OR
               *cpe:2.3:a:apache:tomcat:-:*:*:*:*:*:*:*
          OR
               cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
               cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
               cpe:2.3:o:redhat:enterprise_linux_hpc_node_eus:7.2:*:*:*:*:*:*:*
               cpe:2.3:o:redhat:enterprise_linux_hpc_node:7.0:*:*:*:*:*:*:*
               cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
               cpe:2.3:o:redhat:enterprise_linux_server_aus:7.2:*:*:*:*:*:*:*
               cpe:2.3:o:redhat:enterprise_linux_server_eus:7.2:*:*:*:*:*:*:*
               cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*
               cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
               cpe:2.3:o:redhat:enterprise_linux_hpc_node:6.0:*:*:*:*:*:*:*
               cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
               cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*
               cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*
               cpe:2.3:o:redhat:enterprise_linux:5.0:*:*:*:*:*:*:*
               cpe:2.3:a:redhat:jboss_web_server:3.0:*:*:*:*:*:*:*
               cpe:2.3:a:redhat:jboss_enterprise_web_server:2.0.0:*:*:*:*:*:*:*
Added CVSS V2

								
							
							
						
(AV:L/AC:L/Au:N/C:C/I:C/A:C)
Added CVSS V3

								
							
							
						
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Added CWE

								
							
							
						
CWE-264
Changed Reference Type
http://rhn.redhat.com/errata/RHSA-2016-2045.html No Types Assigned
http://rhn.redhat.com/errata/RHSA-2016-2045.html Vendor Advisory
Changed Reference Type
http://rhn.redhat.com/errata/RHSA-2016-2046.html No Types Assigned
http://rhn.redhat.com/errata/RHSA-2016-2046.html Vendor Advisory
Changed Reference Type
https://bugzilla.redhat.com/show_bug.cgi?id=1367447 No Types Assigned
https://bugzilla.redhat.com/show_bug.cgi?id=1367447 VDB Entry, Issue Tracking, Vendor Advisory