Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2018-2938

🗓️ 18 Jul 2018 13:00:00Reported by oracleType 
cve
 cve🔗 web.nvd.nist.gov👁 300 Views

Vulnerability in Java SE component of Oracle Java SE (subcomponent: Java DB). Supported versions 6u191, 7u181, and 8u172. Difficult to exploit, unauthenticated network access vulnerability can result in takeover of Java SE. CVE-2018-2938 addresses CVE-2018-1313. CVSS 3.0 Base Score 9.

Related
Detection
Affected
Refs
ReporterTitlePublishedViews
Family
Tenable Nessus		Oracle Java SE 6 < Update 201 / 7 < Update 191 / 8 < Update 181 / 10 < Update 2 Multiple Vulnerabilities (July 2018 CPU)
2 May 201900:00
nessus
Tenable Nessus		openSUSE Security Update : java-1_8_0-openjdk (openSUSE-2018-1138)
9 Oct 201800:00
nessus
Tenable Nessus		openSUSE Security Update : java-1_8_0-openjdk (openSUSE-2018-1143) (Spectre)
15 Oct 201800:00
nessus
Tenable Nessus		openSUSE Security Update : java-1_7_0-openjdk (openSUSE-2019-42) (Spectre)
14 Jan 201900:00
nessus
Tenable Nessus		openSUSE Security Update : java-1_8_0-openjdk (openSUSE-2019-774)
27 Mar 201900:00
nessus
Tenable Nessus		Oracle Java SE Multiple Vulnerabilities (July 2018 CPU)
20 Jul 201800:00
nessus
Tenable Nessus		Oracle Java SE Multiple Vulnerabilities (July 2018 CPU) (Unix)
20 Jul 201800:00
nessus
Tenable Nessus		Oracle JRockit R28.3.18 Multiple Vulnerabilities (July 2018 CPU)
20 Jul 201800:00
nessus
Tenable Nessus		Photon OS 1.0: Blktrace / Libmspack / Ntp / Openjdk / Perl / Systemd / Vim PHSA-2018-1.0-0167 (deprecated)
17 Aug 201800:00
nessus
Tenable Nessus		Photon OS 1.0: Openjdk PHSA-2018-1.0-0167
7 Feb 201900:00
nessus
Rows per page
NVD
Node
oraclejdkMatch1.6.0update191
OR
oraclejdkMatch1.7.0update181
OR
oraclejdkMatch1.8.0update172
OR
oraclejreMatch1.6.0update191
OR
oraclejreMatch1.7.0update181
OR
oraclejreMatch1.8.0update172
Node
netappactive_iq_unified_managerMatch-vmware_vsphere
OR
netappactive_iq_unified_managerMatch-windows
OR
netappcloud_backupMatch-
OR
netappe-series_santricity_os_controllerRange11.011.70.1
OR
netappe-series_santricity_storage_managerMatch-
OR
netapponcommand_insightMatch-
OR
netapponcommand_unified_managerMatch-
OR
netapponcommand_workflow_automationMatch-
OR
netappplug-in_for_symantec_netbackupMatch-
OR
netappsnapmanagerMatch-oracle
OR
netappsnapmanagerMatch-sap
OR
netappsteelstore_cloud_integrated_storageMatch-
OR
netappstorage_replication_adapter_for_clustered_data_ontapRange9.7vmware_vsphere
OR
netappvasa_provider_for_clustered_data_ontapRange9.7
OR
netappvirtual_storage_consoleRange9.7vmware_vsphere
[
  {
    "product": "Java",
    "vendor": "Oracle Corporation",
    "versions": [
      {
        "status": "affected",
        "version": "Java SE: 6u191"
      },
      {
        "status": "affected",
        "version": "7u181"
      },
      {
        "status": "affected",
        "version": "8u172"
      }
    ]
  }
]

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
21 Nov 2024 04:04Current
6.8Medium risk
Vulners AI Score6.8
CVSS 26.8
CVSS 3.19
EPSS0.00595
SSVC
java seoraclecve-2018-2938vulnerabilityjava dbnetwork accesstakeovercvss 3.0nvd
300