EUVD-2018-14828

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

Vulnerability in Oracle Java SE allows unauthenticated attackers to compromise data via SSL/TLS.

Reporter	Title	Published	Views	Family All 226
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Content Collector for Email, IBM Content Collector for File Systems, IBM Content Collector for SharePoint and IBM Content Collector for IBM Connections	12 Nov 201813:15	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM Runtime Environment Java affect Rational Build Forge (CVE-2018-1656; CVE-2018-2973; CVE-2018-12539)	14 Dec 201804:00	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM® Java™ SDK and IBM® Java™ Runtime affect IBM® Intelligent Operations Center products	21 Dec 201811:10	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Security Directory Server	11 Jan 201916:25	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM Integration Bus, IBM App Connect Enterpise v11 and WebSphere Message Broker	23 Mar 202020:41	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities have been identified in DB2 that affect the IBM Performance Management product	26 Mar 201917:30	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in Java runtime environment that IBM provides affect WebSphere eXtreme Scale	21 Dec 201805:15	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect Rational Directory Server (Tivoli) & Rational Directory Administrator	23 Oct 201815:50	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM Java affect IBM Netezza Analytics for NPS	31 May 202203:16	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM Cloud Orchestrator and IBM Cloud Orchestrator Enterprise	22 Jan 201910:30	–	ibm

[
  {
    "enisaIdVendor": [
      {
        "id": "0dfb9130-f58e-385f-bec0-36c8d92f31c6",
        "vendor": {
          "name": "Oracle Corporation"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "12564cbf-7178-3198-87fa-d80942a9955b",
        "product": {
          "name": "Java"
        },
        "product_version": "8u172"
      },
      {
        "id": "29f23baa-e4f3-3dd4-b2d6-c7960cffcc00",
        "product": {
          "name": "Java"
        },
        "product_version": "Java SE: 6u191"
      },
      {
        "id": "c267d2d9-ded9-3644-83f3-f2feea4f0ef4",
        "product": {
          "name": "Java"
        },
        "product_version": "7u181"
      },
      {
        "id": "d27c2ff7-9c38-3eaa-b239-6a26fbede07d",
        "product": {
          "name": "Java"
        },
        "product_version": "10.0.1; Java SE Embedded: 8u171"
      }
    ]
  }
]

Source	Link
suse	www.suse.com/security/cve/CVE-2018-2973.html
access	www.access.redhat.com/errata/RHSA-2018:3008
access	www.access.redhat.com/errata/RHSA-2018:3007
access	www.access.redhat.com/errata/RHSA-2018:2713
access	www.access.redhat.com/errata/RHSA-2018:2712
access	www.access.redhat.com/errata/RHSA-2018:2576
access	www.access.redhat.com/errata/RHSA-2018:2575
access	www.access.redhat.com/errata/RHSA-2018:2569
access	www.access.redhat.com/errata/RHSA-2018:2568
access	www.access.redhat.com/errata/RHSA-2018:2256

07 Oct 2025 00:30Current

7.4High risk

Vulners AI Score7.4

CVSS 3.15.9

CVSS 24.3

EPSS0.00297

SSVC

java se vulnerability secure coding unauthenticated access ssl tls