Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2012-4823
HistoryJan 11, 2013 - 12:55 a.m.

CVE-2012-4823

2013-01-1100:55:00
NVD-CWE-noinfo
[email protected]
web.nvd.nist.gov
52
ibm
java
vulnerability
remote
execute
code
cwe-284

5.1 Medium

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.768 High

EPSS

Percentile

98.2%

JSON

Unspecified vulnerability in the JRE component in IBM Java 7 SR2 and earlier, Java 6.0.1 SR3 and earlier, Java 6 SR11 and earlier, Java 5 SR14 and earlier, and Java 142 SR13 FP13 and earlier; as used in IBM Rational Host On-Demand, Rational Change, Tivoli Monitoring, Smart Analytics System 5600, Tivoli Remote Control 5.1.2, WebSphere Real Time, Lotus Notes & Domino, Tivoli Storage Productivity Center, and Service Deliver Manager; and other products from other vendors such as Red Hat, allows remote attackers to execute arbitrary code via vectors related to “insecure use of the java.lang.ClassLoder defineClass() method.”

References

Related

checkpoint_advisories 1
cvelist 1
prion 1
nessus 5
ibm 6
veracode 22
redhat 4
checkpoint_advisories
checkpoint_advisories
IBM Java java.lang.ClassLoader.defineClass Sandbox Breach (CVE-2012-4823)
2013-04-09 00:00:00
cvelist
cvelist
CVE-2012-4823
2013-01-11 00:00:00
prion
prion
Security feature bypass
2013-01-11 00:55:00
nessus
nessus
IBM Lotus Notes 8.5.1 / 8.5.2 / 8.5.3 < 8.5.3 FP3 Multiple Vulnerabilities
2012-12-17 00:00:00
RHEL 5 / 6 : java-1.6.0-ibm (RHSA-2012:1466) (ROBOT)
2012-11-16 00:00:00
RHEL 6 : java-1.7.0-ibm (RHSA-2012:1467) (ROBOT)
2012-11-16 00:00:00
ibm
ibm
Security Bulletin: IBM Smart Analytics System 5600 clients affected by vulnerabilities in IBM JRE (CVE-2012-4820, CVE-2012-4821, CVE-2012-4822, CVE-2012-4823)
2022-09-25 23:13:40
Security Bulletin: Tivoli Storage Productivity Center clients affected by vulnerabilities in IBM JRE (CVE-2012-4820, CVE-2012-4821, CVE-2012-4822, CVE-2012-4823)
2022-09-25 23:13:40
Security Bulletin: Vulnerabilities in IBM Java SDK (CVE-2012-4820, CVE-2012-4821, CVE-2012-4822, CVE-2012-4823)
2022-09-25 22:39:39
veracode
veracode
Privilege Escalation
2019-05-02 04:41:05
Information Disclosure
2019-05-02 04:41:06
Privilege Escalation
2019-05-02 04:41:07
redhat
redhat
(RHSA-2012:1466) Critical: java-1.6.0-ibm security update
2012-11-15 00:00:00
(RHSA-2012:1467) Critical: java-1.7.0-ibm security update
2012-11-15 00:00:00
(RHSA-2013:1456) Low: Red Hat Network Satellite server IBM Java Runtime security update
2013-10-23 00:00:00

5.1 Medium

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.768 High

EPSS

Percentile

98.2%

JSON
Related for CVE-2012-4823
checkpoint_advisories1cvelist1prion1nessus5ibm6veracode22redhat4