CVE-2012-0551

2012-05-0318:55:00

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

202

cve-2012-0551

oracle

java

jre

glassfish

vulnerability

confidentiality

integrity

nvd

5.4 Medium

AI Score

Confidence

Low

5.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

0.867 High

EPSS

Percentile

98.6%

JSON

Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE 7 update 4 and earlier and 6 update 32 and earlier, and the GlassFish Enterprise Server component in Oracle Sun Products Suite GlassFish Enterprise Server 3.1.1, allows remote attackers to affect confidentiality and integrity via unknown vectors related to Web Container or Deployment.

CPENameOperatorVersion
oracle:glassfish_serveroracle glassfish servereq3.1.1
sun:jdksun jdkeq1.6.0
sun:jresun jreeq1.6.0
oracle:jdkoracle jdkeq1.6.0
oracle:jreoracle jreeq1.6.0
oracle:jreoracle jrele1.7.0
oracle:jdkoracle jdkeq1.7.0

CPE	Name	Operator	Version
oracle:glassfish_server	oracle glassfish server	eq	3.1.1
sun:jdk	sun jdk	eq	1.6.0
sun:jre	sun jre	eq	1.6.0
oracle:jdk	oracle jdk	eq	1.6.0
oracle:jre	oracle jre	eq	1.6.0
oracle:jre	oracle jre	le	1.7.0
oracle:jdk	oracle jdk	eq	1.7.0