CVE-2013-3008

2013-07-2311:03:19

[email protected]

web.nvd.nist.gov

cve-2013-3008

java

ibm

jre

vulnerability

nvd

6.2 Medium

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.016 Low

EPSS

Percentile

87.4%

JSON

Unspecified vulnerability in the Java Runtime Environment (JRE) in IBM Java 7 before 7 SR5 allows remote attackers to affect confidentiality, availability, and integrity via unknown vectors, a different vulnerability than CVE-2013-3006.

Affected configurations

NVD

Node

ibmjavaMatch7.0.0.0

ibmjavaMatch7.0.1.0

ibmjavaMatch7.0.2.0

ibmjavaMatch7.0.3.0

ibmjavaMatch7.0.4.0

ibmjavaMatch7.0.4.1

ibmjavaMatch7.0.4.2

CPENameOperatorVersion
ibm:javaibm javaeq7.0.0.0
ibm:javaibm javaeq7.0.1.0
ibm:javaibm javaeq7.0.2.0
ibm:javaibm javaeq7.0.3.0
ibm:javaibm javaeq7.0.4.0
ibm:javaibm javaeq7.0.4.1
ibm:javaibm javaeq7.0.4.2

CPE	Name	Operator	Version
ibm:java	ibm java	eq	7.0.0.0
ibm:java	ibm java	eq	7.0.1.0
ibm:java	ibm java	eq	7.0.2.0
ibm:java	ibm java	eq	7.0.3.0
ibm:java	ibm java	eq	7.0.4.0
ibm:java	ibm java	eq	7.0.4.1
ibm:java	ibm java	eq	7.0.4.2