Lucene search
HistoryFeb 02, 2013 - 12:55 a.m.
CVE-2013-0409
cve-2013-0409
unspecified vulnerability
java runtime environment
oracle java
remote attackers
confidentiality
jmx
5.3 Medium
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.007 Low
EPSS
Percentile
80.7%
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38 allows remote attackers to affect confidentiality via vectors related to JMX.
Affected configurations
Node
oraclejreMatch1.7.0
ORoraclejreMatch1.7.0update1
ORoraclejreMatch1.7.0update10
ORoraclejreMatch1.7.0update11
ORoraclejreMatch1.7.0update2
ORoraclejreMatch1.7.0update3
ORoraclejreMatch1.7.0update4
ORoraclejreMatch1.7.0update5
ORoraclejreMatch1.7.0update6
ORoraclejreMatch1.7.0update7
ORoraclejreMatch1.7.0update9
Node
oraclejdkMatch1.7.0
ORoraclejdkMatch1.7.0update1
ORoraclejdkMatch1.7.0update10
ORoraclejdkMatch1.7.0update11
ORoraclejdkMatch1.7.0update2
ORoraclejdkMatch1.7.0update3
ORoraclejdkMatch1.7.0update4
ORoraclejdkMatch1.7.0update5
ORoraclejdkMatch1.7.0update6
ORoraclejdkMatch1.7.0update7
ORoraclejdkMatch1.7.0update9
Node
oraclejreMatch1.6.0update22
ORoraclejreMatch1.6.0update23
ORoraclejreMatch1.6.0update24
ORoraclejreMatch1.6.0update25
ORoraclejreMatch1.6.0update26
ORoraclejreMatch1.6.0update27
ORoraclejreMatch1.6.0update29
ORoraclejreMatch1.6.0update30
ORoraclejreMatch1.6.0update31
ORoraclejreMatch1.6.0update32
ORoraclejreMatch1.6.0update33
ORoraclejreMatch1.6.0update34
ORoraclejreMatch1.6.0update35
ORoraclejreMatch1.6.0update37
ORoraclejreMatch1.6.0update38
ORsunjreMatch1.6.0
ORsunjreMatch1.6.0update_1
ORsunjreMatch1.6.0update_10
ORsunjreMatch1.6.0update_11
ORsunjreMatch1.6.0update_12
ORsunjreMatch1.6.0update_13
ORsunjreMatch1.6.0update_14
ORsunjreMatch1.6.0update_15
ORsunjreMatch1.6.0update_16
ORsunjreMatch1.6.0update_17
ORsunjreMatch1.6.0update_18
ORsunjreMatch1.6.0update_19
ORsunjreMatch1.6.0update_2
ORsunjreMatch1.6.0update_20
ORsunjreMatch1.6.0update_21
ORsunjreMatch1.6.0update_3
ORsunjreMatch1.6.0update_4
ORsunjreMatch1.6.0update_5
ORsunjreMatch1.6.0update_6
ORsunjreMatch1.6.0update_7
ORsunjreMatch1.6.0update_9
Node
oraclejdkMatch1.6.0update22
ORoraclejdkMatch1.6.0update23
ORoraclejdkMatch1.6.0update24
ORoraclejdkMatch1.6.0update25
ORoraclejdkMatch1.6.0update26
ORoraclejdkMatch1.6.0update27
ORoraclejdkMatch1.6.0update29
ORoraclejdkMatch1.6.0update30
ORoraclejdkMatch1.6.0update31
ORoraclejdkMatch1.6.0update32
ORoraclejdkMatch1.6.0update33
ORoraclejdkMatch1.6.0update34
ORoraclejdkMatch1.6.0update35
ORoraclejdkMatch1.6.0update37
ORoraclejdkMatch1.6.0update38
ORsunjdkMatch1.6.0
ORsunjdkMatch1.6.0update_10
ORsunjdkMatch1.6.0update_11
ORsunjdkMatch1.6.0update_12
ORsunjdkMatch1.6.0update_13
ORsunjdkMatch1.6.0update_14
ORsunjdkMatch1.6.0update_15
ORsunjdkMatch1.6.0update_16
ORsunjdkMatch1.6.0update_17
ORsunjdkMatch1.6.0update_18
ORsunjdkMatch1.6.0update_19
ORsunjdkMatch1.6.0update_20
ORsunjdkMatch1.6.0update_21
ORsunjdkMatch1.6.0update_3
ORsunjdkMatch1.6.0update_4
ORsunjdkMatch1.6.0update_5
ORsunjdkMatch1.6.0update_6
ORsunjdkMatch1.6.0update_7
ORsunjdkMatch1.6.0update1
ORsunjdkMatch1.6.0update1_b06
ORsunjdkMatch1.6.0update2
Node
oraclejreMatch1.5.0update36
ORoraclejreMatch1.5.0update38
ORsunjreMatch1.5.0
ORsunjreMatch1.5.0update1
ORsunjreMatch1.5.0update10
ORsunjreMatch1.5.0update11
ORsunjreMatch1.5.0update12
ORsunjreMatch1.5.0update13
ORsunjreMatch1.5.0update14
ORsunjreMatch1.5.0update15
ORsunjreMatch1.5.0update16
ORsunjreMatch1.5.0update17
ORsunjreMatch1.5.0update18
ORsunjreMatch1.5.0update19
ORsunjreMatch1.5.0update2
ORsunjreMatch1.5.0update20
ORsunjreMatch1.5.0update21
ORsunjreMatch1.5.0update22
ORsunjreMatch1.5.0update23
ORsunjreMatch1.5.0update24
ORsunjreMatch1.5.0update25
ORsunjreMatch1.5.0update26
ORsunjreMatch1.5.0update27
ORsunjreMatch1.5.0update28
ORsunjreMatch1.5.0update29
ORsunjreMatch1.5.0update3
ORsunjreMatch1.5.0update31
ORsunjreMatch1.5.0update33
ORsunjreMatch1.5.0update4
ORsunjreMatch1.5.0update5
ORsunjreMatch1.5.0update6
ORsunjreMatch1.5.0update7
ORsunjreMatch1.5.0update8
ORsunjreMatch1.5.0update9
Node
oraclejdkMatch1.5.0update36
ORoraclejdkMatch1.5.0update38
ORsunjdkMatch1.5.0
ORsunjdkMatch1.5.0update1
ORsunjdkMatch1.5.0update10
ORsunjdkMatch1.5.0update11
ORsunjdkMatch1.5.0update11_b03
ORsunjdkMatch1.5.0update12
ORsunjdkMatch1.5.0update13
ORsunjdkMatch1.5.0update14
ORsunjdkMatch1.5.0update15
ORsunjdkMatch1.5.0update16
ORsunjdkMatch1.5.0update17
ORsunjdkMatch1.5.0update18
ORsunjdkMatch1.5.0update19
ORsunjdkMatch1.5.0update2
ORsunjdkMatch1.5.0update20
ORsunjdkMatch1.5.0update21
ORsunjdkMatch1.5.0update22
ORsunjdkMatch1.5.0update23
ORsunjdkMatch1.5.0update24
ORsunjdkMatch1.5.0update25
ORsunjdkMatch1.5.0update26
ORsunjdkMatch1.5.0update27
ORsunjdkMatch1.5.0update28
ORsunjdkMatch1.5.0update29
ORsunjdkMatch1.5.0update3
ORsunjdkMatch1.5.0update31
ORsunjdkMatch1.5.0update33
ORsunjdkMatch1.5.0update4
ORsunjdkMatch1.5.0update5
ORsunjdkMatch1.5.0update6
ORsunjdkMatch1.5.0update7
ORsunjdkMatch1.5.0update7_b03
ORsunjdkMatch1.5.0update8
ORsunjdkMatch1.5.0update9
| CPE | Name | Operator | Version |
|---|---|---|---|
| oracle:jre | oracle jre | eq | 1.7.0 |
References
marc.info/?l=bugtraq&m=136439120408139&w=2
marc.info/?l=bugtraq&m=136570436423916&w=2
marc.info/?l=bugtraq&m=136733161405818&w=2
rhn.redhat.com/errata/RHSA-2013-0236.html
rhn.redhat.com/errata/RHSA-2013-0237.html
rhn.redhat.com/errata/RHSA-2013-1455.html
rhn.redhat.com/errata/RHSA-2013-1456.html
www.kb.cert.org/vuls/id/858729
www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html
www.securityfocus.com/bid/57728
www.us-cert.gov/cas/techalerts/TA13-032A.html
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16530
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19114
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19240
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19383
Related
ubuntucve
ubuntucve
CVE-2013-0409
2013-02-01 00:00:00
prion
prion
Design/Logic Flaw
2013-02-02 00:55:00
cvelist
cvelist
CVE-2013-0409
2013-02-02 00:00:00
veracode
veracode
Information Disclosure
2019-05-02 04:54:13
nvd
nvd
CVE-2013-0409
2013-02-02 00:55:01
suse
suse
Security update for Java (important)
2013-03-15 20:04:28
Security update for IBM Java5 JRE and SDK (important)
2013-03-16 17:06:57
Security update for Java (important)
2013-03-18 21:04:29
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2013:0440-6)
2021-06-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2013:0440-4)
2021-06-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2013:0456-1)
2021-06-09 00:00:00
nessus
nessus
SuSE 10 Security Update : Java (ZYPP Patch Number 8483)
2013-03-17 00:00:00
RHEL 5 / 6 : java-1.5.0-ibm (RHSA-2013:0624)
2013-03-12 00:00:00
SuSE 11.2 Security Update : Java (SAT Patch Number 7481)
2013-03-17 00:00:00
redhat
redhat
(RHSA-2013:0624) Critical: java-1.5.0-ibm security update
2013-03-11 00:00:00
(RHSA-2013:0236) Critical: java-1.6.0-sun security update
2013-02-04 00:00:00
(RHSA-2013:0625) Critical: java-1.6.0-ibm security update
2013-03-11 00:00:00
ibm
ibm
ubuntu
ubuntu
OpenJDK vulnerabilities
2013-02-14 00:00:00
cert
cert
Oracle Java contains multiple vulnerabilities
2013-02-01 00:00:00
securityvulns
securityvulns
Oracle Java multiple security vulnerabilities
2013-03-19 00:00:00
gentoo
gentoo
Oracle JRE/JDK: Multiple vulnerabilities
2014-01-27 00:00:00
5.3 Medium
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.007 Low
EPSS
Percentile
80.7%
Related for CVE-2013-0409