CVE-2013-3006

2013-07-2311:03:00

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

cve-2013-3006

ibm

java

vulnerability

confidentiality

availability

integrity

6.1 Medium

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.016 Low

EPSS

Percentile

87.4%

JSON

Unspecified vulnerability in the Java Runtime Environment (JRE) in IBM Java 7 before 7 SR5 allows remote attackers to affect confidentiality, availability, and integrity via unknown vectors, a different vulnerability than CVE-2013-3008.

CPENameOperatorVersion
ibm:javaibm javaeq7.0.0.0
ibm:javaibm javaeq7.0.2.0
ibm:javaibm javaeq7.0.4.2
ibm:javaibm javaeq7.0.1.0
ibm:javaibm javaeq7.0.4.1
ibm:javaibm javaeq7.0.3.0
ibm:javaibm javaeq7.0.4.0

CPE	Name	Operator	Version
ibm:java	ibm java	eq	7.0.0.0
ibm:java	ibm java	eq	7.0.2.0
ibm:java	ibm java	eq	7.0.4.2
ibm:java	ibm java	eq	7.0.1.0
ibm:java	ibm java	eq	7.0.4.1
ibm:java	ibm java	eq	7.0.3.0
ibm:java	ibm java	eq	7.0.4.0