CVE-2012-1720

2012-06-1621:55:00

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

cve-2012-1720

unspecified vulnerability

java runtime environment

oracle java

solaris

networking

nvd

5.3 Medium

AI Score

Confidence

Low

3.7 Low

CVSS2

Access Vector

LOCAL

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:H/Au:N/C:P/I:P/A:P

0.001 Low

EPSS

Percentile

26.2%

JSON

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.2_37 and earlier, when running on Solaris, allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Networking.

CPENameOperatorVersion
oracle:jreoracle jrele1.7.0
oracle:jdkoracle jdkle1.7.0
oracle:jdkoracle jdkle1.6.0
oracle:jreoracle jrele1.6.0
sun:jdksun jdkle1.5.0
sun:jresun jrele1.5.0
sun:jdksun jdkle1.4.2_37
sun:jresun jrele1.4.2_37

CPE	Name	Operator	Version
oracle:jre	oracle jre	le	1.7.0
oracle:jdk	oracle jdk	le	1.7.0
oracle:jdk	oracle jdk	le	1.6.0
oracle:jre	oracle jre	le	1.6.0
sun:jdk	sun jdk	le	1.5.0
sun:jre	sun jre	le	1.5.0
sun:jdk	sun jdk	le	1.4.2_37
sun:jre	sun jre	le	1.4.2_37