Lucene search

[email protected]CVE-2011-3546

HistoryOct 19, 2011 - 9:55 p.m.

CVE-2011-3546

2011-10-1921:55:01

[email protected]

web.nvd.nist.gov

cve-2011-3546

oracle

java

runtime environment

jdk

jre

vulnerability

confidentiality

integrity

java web start

java applets

nvd

5.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

5.3 Medium

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

75.4%

JSON

Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, and JavaFX 2.0 allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality and integrity via unknown vectors related to Deployment.

Affected configurations

NVD

Node

oraclejavafxMatch2.0

Node

oraclejdkMatch1.7.0

oraclejreMatch1.7.0

Node

oraclejreRange≤1.6.0update27

oraclejreMatch1.6.0update22

oraclejreMatch1.6.0update23

oraclejreMatch1.6.0update24

oraclejreMatch1.6.0update25

oraclejreMatch1.6.0update26

sunjreMatch1.6.0

sunjreMatch1.6.0update_1

sunjreMatch1.6.0update_10

sunjreMatch1.6.0update_11

sunjreMatch1.6.0update_12

sunjreMatch1.6.0update_13

sunjreMatch1.6.0update_14

sunjreMatch1.6.0update_15

sunjreMatch1.6.0update_16

sunjreMatch1.6.0update_17

sunjreMatch1.6.0update_18

sunjreMatch1.6.0update_19

sunjreMatch1.6.0update_2

sunjreMatch1.6.0update_20

sunjreMatch1.6.0update_21

sunjreMatch1.6.0update_3

sunjreMatch1.6.0update_4

sunjreMatch1.6.0update_5

sunjreMatch1.6.0update_6

sunjreMatch1.6.0update_7

Node

oraclejdkRange≤1.6.0update27

oraclejdkMatch1.6.0update22

oraclejdkMatch1.6.0update23

oraclejdkMatch1.6.0update24

oraclejdkMatch1.6.0update25

oraclejdkMatch1.6.0update26

sunjdkMatch1.6.0

sunjdkMatch1.6.0update_10

sunjdkMatch1.6.0update_11

sunjdkMatch1.6.0update_12

sunjdkMatch1.6.0update_13

sunjdkMatch1.6.0update_14

sunjdkMatch1.6.0update_15

sunjdkMatch1.6.0update_16

sunjdkMatch1.6.0update_17

sunjdkMatch1.6.0update_18

sunjdkMatch1.6.0update_19

sunjdkMatch1.6.0update_20

sunjdkMatch1.6.0update_20x64

sunjdkMatch1.6.0update_21

sunjdkMatch1.6.0update_3

sunjdkMatch1.6.0update_4

sunjdkMatch1.6.0update_5

sunjdkMatch1.6.0update_6

sunjdkMatch1.6.0update_7

sunjdkMatch1.6.0update1

sunjdkMatch1.6.0update1_b06

sunjdkMatch1.6.0update2

CPENameOperatorVersion
oracle:javafxoracle javafxeq2.0

CPE	Name	Operator	Version
oracle:javafx	oracle javafx	eq	2.0

References

lists.opensuse.org/opensuse-security-announce/2012-01/msg00049.html

marc.info/?l=bugtraq&m=132750579901589&w=2

marc.info/?l=bugtraq&m=134254866602253&w=2

marc.info/?l=bugtraq&m=134254957702612&w=2

osvdb.org/76509

rhn.redhat.com/errata/RHSA-2013-1455.html

secunia.com/advisories/48308

www.ibm.com/developerworks/java/jdk/alerts/

www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html

www.redhat.com/support/errata/RHSA-2011-1384.html

www.securityfocus.com/bid/50239

www.securitytracker.com/id?1026215

exchange.xforce.ibmcloud.com/vulnerabilities/70847

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14291

5.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

5.3 Medium

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

75.4%

JSON

Related for CVE-2011-3546

cvelist1 veracode1 ubuntucve1 prion1 nvd1 openvas8 nessus18 securityvulns2 threatpost1 suse2 redhat3 ibm1 seebug1 gentoo1