Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2013-0438
HistoryFeb 02, 2013 - 12:55 a.m.

CVE-2013-0438

2013-02-0200:55:02
[email protected]
web.nvd.nist.gov
66
cve-2013-0438
oracle
java
jre
vulnerability
confidentiality
nvd
remote attack

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

5.3 Medium

AI Score

Confidence

Low

0.007 Low

EPSS

Percentile

80.7%

JSON

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality via unknown vectors related to Deployment.

Affected configurations

NVD
Node
oraclejreMatch1.7.0
OR
oraclejreMatch1.7.0update1
OR
oraclejreMatch1.7.0update10
OR
oraclejreMatch1.7.0update11
OR
oraclejreMatch1.7.0update2
OR
oraclejreMatch1.7.0update3
OR
oraclejreMatch1.7.0update4
OR
oraclejreMatch1.7.0update5
OR
oraclejreMatch1.7.0update6
OR
oraclejreMatch1.7.0update7
OR
oraclejreMatch1.7.0update9
Node
oraclejdkMatch1.7.0
OR
oraclejdkMatch1.7.0update1
OR
oraclejdkMatch1.7.0update10
OR
oraclejdkMatch1.7.0update11
OR
oraclejdkMatch1.7.0update2
OR
oraclejdkMatch1.7.0update3
OR
oraclejdkMatch1.7.0update4
OR
oraclejdkMatch1.7.0update5
OR
oraclejdkMatch1.7.0update6
OR
oraclejdkMatch1.7.0update7
OR
oraclejdkMatch1.7.0update9
Node
oraclejreMatch1.6.0update22
OR
oraclejreMatch1.6.0update23
OR
oraclejreMatch1.6.0update24
OR
oraclejreMatch1.6.0update25
OR
oraclejreMatch1.6.0update26
OR
oraclejreMatch1.6.0update27
OR
oraclejreMatch1.6.0update29
OR
oraclejreMatch1.6.0update30
OR
oraclejreMatch1.6.0update31
OR
oraclejreMatch1.6.0update32
OR
oraclejreMatch1.6.0update33
OR
oraclejreMatch1.6.0update34
OR
oraclejreMatch1.6.0update35
OR
oraclejreMatch1.6.0update37
OR
oraclejreMatch1.6.0update38
OR
sunjreMatch1.6.0
OR
sunjreMatch1.6.0update_1
OR
sunjreMatch1.6.0update_10
OR
sunjreMatch1.6.0update_11
OR
sunjreMatch1.6.0update_12
OR
sunjreMatch1.6.0update_13
OR
sunjreMatch1.6.0update_14
OR
sunjreMatch1.6.0update_15
OR
sunjreMatch1.6.0update_16
OR
sunjreMatch1.6.0update_17
OR
sunjreMatch1.6.0update_18
OR
sunjreMatch1.6.0update_19
OR
sunjreMatch1.6.0update_2
OR
sunjreMatch1.6.0update_20
OR
sunjreMatch1.6.0update_21
OR
sunjreMatch1.6.0update_3
OR
sunjreMatch1.6.0update_4
OR
sunjreMatch1.6.0update_5
OR
sunjreMatch1.6.0update_6
OR
sunjreMatch1.6.0update_7
OR
sunjreMatch1.6.0update_9
Node
oraclejdkMatch1.6.0update22
OR
oraclejdkMatch1.6.0update23
OR
oraclejdkMatch1.6.0update24
OR
oraclejdkMatch1.6.0update25
OR
oraclejdkMatch1.6.0update26
OR
oraclejdkMatch1.6.0update27
OR
oraclejdkMatch1.6.0update29
OR
oraclejdkMatch1.6.0update30
OR
oraclejdkMatch1.6.0update31
OR
oraclejdkMatch1.6.0update32
OR
oraclejdkMatch1.6.0update33
OR
oraclejdkMatch1.6.0update34
OR
oraclejdkMatch1.6.0update35
OR
oraclejdkMatch1.6.0update37
OR
oraclejdkMatch1.6.0update38
OR
sunjdkMatch1.6.0
OR
sunjdkMatch1.6.0update_10
OR
sunjdkMatch1.6.0update_11
OR
sunjdkMatch1.6.0update_12
OR
sunjdkMatch1.6.0update_13
OR
sunjdkMatch1.6.0update_14
OR
sunjdkMatch1.6.0update_15
OR
sunjdkMatch1.6.0update_16
OR
sunjdkMatch1.6.0update_17
OR
sunjdkMatch1.6.0update_18
OR
sunjdkMatch1.6.0update_19
OR
sunjdkMatch1.6.0update_20
OR
sunjdkMatch1.6.0update_21
OR
sunjdkMatch1.6.0update_3
OR
sunjdkMatch1.6.0update_4
OR
sunjdkMatch1.6.0update_5
OR
sunjdkMatch1.6.0update_6
OR
sunjdkMatch1.6.0update_7
OR
sunjdkMatch1.6.0update1
OR
sunjdkMatch1.6.0update1_b06
OR
sunjdkMatch1.6.0update2
CPENameOperatorVersion
oracle:jreoracle jreeq1.7.0

Related

ubuntucve 1
veracode 1
prion 1
cvelist 1
nvd 1
ibm 11
openvas 10
nessus 22
suse 5
redhat 6
ubuntu 1
securityvulns 1
cert 1
gentoo 1
ubuntucve
ubuntucve
CVE-2013-0438
2013-02-01 00:00:00
veracode
veracode
Information Disclosure
2019-05-02 04:54:17
prion
prion
Design/Logic Flaw
2013-02-02 00:55:00
cvelist
cvelist
CVE-2013-0438
2013-02-02 00:00:00
nvd
nvd
CVE-2013-0438
2013-02-02 00:55:02
ibm
ibm
Security Bulletin: Storwize V7000 Unified Update Includes Fixes for Multiple Vendor Security Vulnerabilities
2022-09-26 04:23:14
Security Bulletin: SONAS Update Includes Fixes for Multiple Vendor Security Vulnerabilities
2022-09-26 04:23:14
IBM WebSphere Cast Iron Security Bulletin: Multiple security vulnerabilities in IBM JRE 6
2018-06-15 06:56:07
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2013:0456-3)
2021-06-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2013:0456-4)
2021-06-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2013:0456-2)
2021-06-09 00:00:00
nessus
nessus
SuSE 10 Security Update : Java (ZYPP Patch Number 8495)
2013-03-15 00:00:00
Mac OS X : Java for Mac OS X 10.6 Update 12
2013-02-05 00:00:00
RHEL 5 / 6 : java-1.6.0-ibm (RHSA-2013:0625)
2013-03-12 00:00:00
suse
suse
Security update for Java (important)
2013-03-15 16:04:22
Security update for Java (important)
2013-03-14 22:04:21
Security update for Java (important)
2013-03-15 22:05:23
redhat
redhat
(RHSA-2013:0625) Critical: java-1.6.0-ibm security update
2013-03-11 00:00:00
(RHSA-2013:0236) Critical: java-1.6.0-sun security update
2013-02-04 00:00:00
(RHSA-2013:0237) Critical: java-1.7.0-oracle security update
2013-02-04 00:00:00
ubuntu
ubuntu
OpenJDK vulnerabilities
2013-02-14 00:00:00
securityvulns
securityvulns
Oracle Java multiple security vulnerabilities
2013-03-19 00:00:00
cert
cert
Oracle Java contains multiple vulnerabilities
2013-02-01 00:00:00
gentoo
gentoo
Oracle JRE/JDK: Multiple vulnerabilities
2014-01-27 00:00:00

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

5.3 Medium

AI Score

Confidence

Low

0.007 Low

EPSS

Percentile

80.7%

JSON
Related for CVE-2013-0438
ubuntucve1veracode1prion1cvelist1nvd1ibm11openvas10nessus22suse5redhat6ubuntu1securityvulns1cert1gentoo1