Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBMBA5FC59AD4CA540F948C75EA478904F8A2D0A949B970697DAED42B661E911F37
HistorySep 29, 2018 - 8:06 p.m.

Security Bulletin: Vulnerabilities in Rational Functional Tester versions 8.x due to security vulnerabilities in IBM JRE 7.0 Service Release 4 Fix Pack 1 or earlier, and non-IBM Java 7.0

2018-09-2920:06:32
www.ibm.com
4

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

JSON

Summary

Multiple security vulnerabilities exist in the Java Runtime Environments (JREs) IBM JRE 7.0 Service Release 4 Fix Pack 1 or earlier, and non-IBM Java 7.0 or earlier, that can affect the security of Rational Functional Tester.

Vulnerability Details

| Subscribe to My Notifications to be notified of important product support alerts like this.

  • Follow this link for more information (requires login with your IBM ID)
    —|—

CVEID: CVE-2013-2422

Description: Remote attackers can affect confidentiality, integrity, and availability via unknown vectors related to Libraries.

CVSS Base Score: 10
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/83570&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

CVEID: CVE-2013-1491

Description: Remote attackers can execute arbitrary code via vectors related to 2D.

CVSS Base Score: 9.3
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/82820&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

CVEID: CVE-2013-2420

Description: Remote attackers can affect confidentiality, integrity, and availability via unknown vectors related to 2D.

CVSS Base Score: 9.3
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/83560&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

CVEID: CVE-2013-2432

Description: Remote attackers can affect confidentiality, integrity, and availability via unknown vectors related to 2D. This vulnerability is different from CVE-2013-2394 and CVE-2013-1491.

CVSS Base Score: 10
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/83559&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

CVEID: CVE-2013-2425

Description: Remote attackers can affect confidentiality, integrity, and availability via unknown vectors related to Install.

CVSS Base Score: 10
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/83565&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

CVEID: CVE-2013-2434

Description: Remote attackers can affect confidentiality, integrity, and availability via unknown vectors related to 2D.

CVSS Base Score: 9.3
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/83558&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

CVEID: CVE-2013-1569

Description: Remote attackers can affect confidentiality, integrity, and availability via unknown vectors related to 2D.

CVSS Base Score: 9.3
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/83557&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

CVEID: CVE-2013-2384

Description: Remote attackers can affect confidentiality, integrity, and availability via unknown vectors related to 2D, This vulnerability is different from CVE-2013-1569, CVE-2013-2383, and CVE-2013-2420.

CVSS Base Score: 9.3
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/83556&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

CVEID: CVE-2013-2383

Description: Remote attackers can affect confidentiality, integrity, and availability via unknown vectors related to 2D. This vulnerability is different from CVE-2013-1569, CVE-2013-2384, and CVE-2013-2420.

CVSS Base Score: 9.3
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/83555&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: (AV:N/AC:M/Au:N/C:C/I:C/A:C)

CVEID: CVE-2013-1557

Description: Remote attackers can affect confidentiality, integrity, and availability via vectors related to RMI.

CVSS Base Score: 10
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/83572&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

CVEID: CVE-2013-1558

Description: Remote attackers can affect confidentiality, integrity, and availability via unknown vectors related to Beans.

CVSS Base Score: 10
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/83561&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

CVEID: CVE-2013-2440

Description: Remote attackers can affect confidentiality, integrity, and availability via unknown vectors related to Deployment. This vulnerability is different from CVE-2013-2435.

CVSS Base Score: 10
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/83562&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

CVEID: CVE-2013-1518

Description: Remote attackers can affect confidentiality, integrity, and availability via vectors related to JAXP.

CVSS Base Score: 10
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/83566&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

CVEID: CVE-2013-1488

Description: Remote attackers can execute arbitrary code via unspecified vectors involving reflection, Libraries, “improper toString calls,” and the JDBC driver manager.

CVSS Base Score: 9.3
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/82861&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

CVEID: CVE-2013-2421

Description: Remote attackers can affect confidentiality, integrity, and availability via unknown vectors related to HotSpot.

CVSS Base Score: 9.3
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/83573&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

CVEID: CVE-2013-2426

Description: Remote attackers can affect confidentiality, integrity, and availability via unknown vectors related to Libraries.

CVSS Base Score: 9.3
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/83574&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

CVEID: CVE-2013-2436

Description: Remote attackers can affect confidentiality, integrity, and availability via unknown vectors related to Libraries. This vulnerability is different from CVE-2013-1488 and CVE-2013-2426.

CVSS Base Score: 9.3
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/83575&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

CVEID: CVE-2013-2429

Description: Remote attackers can affect confidentiality, integrity, and availability via unknown vectors related to ImageIO.

CVSS Base Score: 7.6
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/83578&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:H/Au:N/C:C/I:C/A:C

CVEID: CVE-2013-2430

Description: Remote attackers can affect confidentiality, integrity, and availability via unknown vectors related to ImageIO.

CVSS Base Score: 7.6
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/83577&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:H/Au:N/C:C/I:C/A:C

CVEID: CVE-2013-1563

Description: Remote attackers can affect confidentiality, integrity, and availability via unknown vectors related to Install.

CVSS Base Score: 7.6
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/83579&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:H/Au:N/C:C/I:C/A:C

CVEID: CVE-2013-2394

Description: Remote attackers can affect confidentiality, integrity, and availability via unknown vectors related to 2D. This vulnerability is different from CVE-2013-2432 and CVE-2013-1491.

CVSS Base Score: 9.3
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/83576&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

CVEID: CVE-2013-0401

Description: Remote attackers can execute arbitrary code via vectors related to AWT.

CVSS Base Score: 9.3
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/82823&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

CVEID: CVE-2013-2438

Description: Remote attackers can affect integrity via unknown vectors related to JavaFX.

CVSS Base Score: 5.0
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/83585&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N

CVEID: CVE-2013-2424

Description: Remote attackers can affect confidentiality via vectors related to JMX.

CVSS Base Score: 5.0
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/83582&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

CVEID: CVE-2013-2419

Description: Remote attackers can affect availability via unknown vectors related to 2D.

CVSS Base Score: 9.3
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/83581&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

CVEID: CVE-2013-2417

Description: Remote attackers can affect availability via unknown vectors related to Networking.

CVSS Base Score: 5.0
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/83586&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

CVEID: CVE-2013-2418

Description: Local users can affect confidentiality, integrity, and availability via unknown vectors related to Deployment.

CVSS Base Score: 4.6
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/83587&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P

CVEID: CVE-2013-1540

Description: Remote attackers can affect integrity via unknown vectors related to Deployment. This vulnerability is different from CVE-2013-2433.

CVSS Base Score: 4.3
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/83590&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

CVEID: CVE-2013-2423

Description: Remote attackers can affect integrity via unknown vectors related to HotSpot.

CVSS Base Score: 9.3
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/83591&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

CVEID: CVE-2013-2433

Description: Remote attackers can affect integrity via unknown vectors related to Deployment. This vulnerability is different from CVE-2013-1540.

CVSS Base Score: 4.3
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/83589&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

CVEID: CVE-2013-2416

Description: Remote attackers can affect integrity via unknown vectors related to Deployment.

CVSS Base Score: 4.3
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/83588&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

CVEID: CVE-2013-2415

Description: Local users can affect confidentiality via vectors related to JAX-WS.

CVSS Base Score: 2.1
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/83592&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N

CVEID: CVE-2013-3012

Description: Remote attackers can affect confidentiality, availability, and integrity via unknown vectors. This vulnerability is different from CVE-2013-3009 and CVE-2013-3011.

CVSS Base Score: 9.3
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/84153&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

CVEID: CVE-2013-3011


Description: Remote attackers can affect confidentiality, availability, and integrity via unknown vectors. This vulnerability is different from CVE-2013-3009 and CVE-2013-3012.

CVSS Base Score: 9.3
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/84152&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

CVEID: CVE-2013-3010

Description: Remote attackers can affect confidentiality, availability, and integrity via unknown vectors. This vulnerability is different from CVE-2013-3007.

CVSS Base Score: 9.3
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/84151&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

CVEID: CVE-2013-3009

Description: Remote attackers can affect confidentiality, availability, and integrity via unknown vectors. This vulnerability is different from CVE-2013-3011 and CVE-2013-3012.

CVSS Base Score: 9.3
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/84150&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

CVEID: CVE-2013-3008

Description: Remote attackers can affect confidentiality, availability, and integrity via unknown vectors. This vulnerability is different from CVE-2013-3006.

CVSS Base Score: 9.3
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/84149&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

CVEID: CVE-2013-3007

Description: Remote attackers to affect confidentiality, availability, and integrity via unknown vectors. This vulnerability is different from CVE-2013-3006.

CVSS Base Score: 9.3
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/84148&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

CVEID: CVE-2013-3006

Description: Remote attackers to affect confidentiality, availability, and integrity via unknown vectors. This vulnerability is different from CVE-2013-3008.

CVSS Base Score: 9.3
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/84147&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

CVEID: CVE-2013-2455

Description: Remote attackers can affect confidentiality via unknown vectors related to Libraries. This vulnerability is different from CVE-2013-2443 and CVE-2013-2452.

CVSS Base Score: 5.0
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/84146&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

CVEID: CVE-2013-2436

Description: Remote attackers can affect confidentiality, integrity, and availability via unknown vectors related to Libraries. This vulnerability is different from CVE-2013-1488 and CVE-2013-2426.

CVSS Base Score: 9.3
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/83575&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

CVEID: CVE-2013-1571

Description: Remote attackers can affect integrity via unknown vectors related to Javadoc.

CVSS Base Score: 4.3
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/84715&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

CVEID: CVE-2013-2468

Description: Remote attackers can affect confidentiality, integrity, and availability via unknown vectors related to Deployment. This vulnerability is different from CVE-2013-2442 and CVE-2013-2466.

CVSS Base Score: 10
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/85034&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

CVEID: CVE-2013-2469

Description: Remote attackers can affect confidentiality, integrity, and availability via unknown vectors related to 2D.

CVSS Base Score: 10
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/85032&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

CVEID: CVE-2013-2465

Description: Remote attackers can affect confidentiality, integrity, and availability via unknown vectors related to 2D.

CVSS Base Score: 10
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/85031&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

CVEID: CVE-2013-2464

Description: Remote attackers can affect confidentiality, integrity, and availability via unknown vectors related to 2D. This vulnerability is different from CVE-2013-2463, CVE-2013-2465, CVE-2013-2469, CVE-2013-2470, CVE-2013-2471, CVE-2013-2472, and CVE-2013-2473.

CVSS Base Score: 10
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/85030&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

CVEID: CVE-2013-2463

Description: Remote attackers can affect confidentiality, integrity, and availability via unknown vectors related to 2D.

CVSS Base Score: 10
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/85029&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

CVEID: CVE-2013-2473

Description: Remote attackers can affect confidentiality, integrity, and availability via unknown vectors related to 2D.

CVSS Base Score: 10
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/85028&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

CVEID: CVE-2013-2472

Description: Remote attackers can affect confidentiality, integrity, and availability via unknown vectors related to 2D.

CVSS Base Score: 10
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/85027&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

CVEID: CVE-2013-2471

Description: Remote attackers can affect confidentiality, integrity, and availability via unknown vectors related to 2D.

CVSS Base Score: 10
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/85026&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

CVEID: CVE-2013-2470

Description: Remote attackers can affect confidentiality, integrity, and availability via unknown vectors related to 2D.

CVSS Base Score: 10
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/85025&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

CVEID: CVE-2013-2459

Description: Remote attackers can affect confidentiality, integrity, and availability via vectors related to AWT.

CVSS Base Score: 10
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/85033&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

CVEID: CVE-2013-2466

Description: Remote attackers can affect confidentiality, integrity, and availability via unknown vectors related to Deployment. This vulnerability is different from CVE-2013-2442 and CVE-2013-2468.

CVSS Base Score: 10
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/85035&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

CVEID: CVE-2013-2462

Description: Remote attackers can affect confidentiality, integrity, and availability via unknown vectors related to Deployment.

CVSS Base Score: 9.3
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/85037&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

CVEID: CVE-2013-2460

Description: Remote attackers can affect confidentiality, integrity, and availability via unknown vectors related to Serviceability.

CVSS Base Score: 9.3
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/85038&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

CVEID: CVE-2013-3743

Description: Remote attackers can affect confidentiality, integrity, and availability via vectors related to AWT.

CVSS Base Score: 9.3
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/85036&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

CVEID: CVE-2013-2448

Description: Remote attackers can affect confidentiality, integrity, and availability via unknown vectors related to Sound.

CVSS Base Score: 7.6
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/85040&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:H/Au:N/C:C/I:C/A:C

CVEID: CVE-2013-2442

Description: Remote attackers can affect confidentiality, integrity, and availability via unknown vectors related to Deployment. This vulnerability is different from CVE-2013-2466 and CVE-2013-2468.

CVSS Base Score: 7.5
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/85041&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

CVEID: CVE-2013-2454

Description: Remote attackers can affect confidentiality and integrity via vectors related to JDBC.

CVSS Base Score: 5.8
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/85045&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:N

CVEID: CVE-2013-2458

Description: Remote attackers can affect confidentiality and integrity via unknown vectors related to Libraries.

CVSS Base Score: 5.8
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/85046&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:N

CVEID: CVE-2013-3744

Description: Remote attackers can affect integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2013-2400.

CVSS Base Score: 5.0
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/85051&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N

CVEID: CVE-2013-2400

Description: Remote attackers can affect integrity via unknown vectors related to Deployment. This vulnerability is different from CVE-2013-3744.

CVSS Base Score: 5.0
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/85050&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N

CVEID: CVE-2013-2456

Description: Remote attackers can affect confidentiality via unknown vectors related to Serialization.

CVSS Base Score: 5.0
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/85058&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

CVEID: CVE-2013-2453

Description: Remote attackers can affect integrity via vectors related to JMX.

CVSS Base Score: 5.0
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/85053&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N

CVEID: CVE-2013-2457

Description: Remote attackers can affect integrity via vectors related to JMX.

CVSS Base Score: 5.0
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/85052&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N

CVEID: CVE-2013-2455

Description: Remote attackers can affect confidentiality via unknown vectors related to Libraries, a different vulnerability than CVE-2013-2443 and CVE-2013-2452.

CVSS Base Score: 5.0
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/84146&gt;
CVSS Environmental Score*: 3.7
CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

CVEID: CVE-2013-2412

Description: Remote attackers can affect confidentiality via unknown vectors related to Serviceability.

CVSS Base Score: 5.0
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/85059&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

CVEID: CVE-2013-2443

Description: Remote attackers can affect confidentiality via unknown vectors related to Libraries, a different vulnerability than CVE-2013-2452 and CVE-2013-2455.

CVSS Base Score: 5.0
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/85054&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

CVEID: CVE-2013-2447

Description: Remote attackers can affect confidentiality via unknown vectors related to Networking.

CVSS Base Score: 5.0
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/85056&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

CVEID: CVE-2013-2437

Description: Remote attackers can affect confidentiality via unknown vectors related to Deployment.

CVSS Base Score: 5.0
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/85049&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

CVEID: CVE-2013-2444

Description: Remote attackers can affect availability via vectors related to AWT.

CVSS Base Score: 5.0
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/85047&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

CVEID: CVE-2013-2452

Description: Remote attackers can affect confidentiality via unknown vectors related to Libraries, a different vulnerability than CVE-2013-2443 and CVE-2013-2455.

CVSS Base Score: 5.0
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/85055&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

CVEID: CVE-2013-2446

Description: Remote attackers can affect confidentiality via vectors related to CORBA.

CVSS Base Score: 5.0
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/85048&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

CVEID: CVE-2013-2450

Description: Remote attackers can affect availability via unknown vectors related to Serialization.

CVSS Base Score: 5.0
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities&gt;/85057
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

CVEID: CVE-2013-2449

Description: Remote attackers can affect confidentiality via unknown vectors related to Libraries.

CVSS Base Score: 4.3
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/85060&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N

CVEID: CVE-2013-2451

Description: Local users can affect confidentiality, integrity, and availability via unknown vectors related to Networking.

CVSS Base Score: 3.7
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/85061&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:L/AC:H/Au:N/C:P/I:P/A:P

CVEID: CVE-2013-1500

Description: Local users can affect confidentiality and integrity via unknown vectors related to 2D.

CVSS Base Score: 3.6
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/85062&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:L/AC:L/Au:N/C:P/I:P/A:N

CVEID: CVE-2013-4002

Description: Remote attackers can affect availability via unknown vectors.

CVSS Base Score: 7.1
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/85260&gt;
CVSS Environmental Score*: Undefined
CVSS Vector: AV:N/AC:M/Au:N/C:N/I:N/A:C

Affected Products and Versions

Versions 8.0 through 8.5 of Rational Functional Tester are affected.

Remediation/Fixes

Fixes are available in IBM JRE 7.0 Service Release 5 and in the latest Java 7.0 patches. You can download from the IBM Java website and configure RFT to use it.

Upgrade to Rational Functional Tester 8.5.1.1 which ships with IBM Java 7.0 Service Release 6 and addresses this security issue.

Workarounds and Mitigations

None

Related

ibm 21
nessus 62
suse 18
veracode 10
openvas 55
redhat 11
securityvulns 2
amazon 4
centos 4
debian 1
ubuntu 5
oraclelinux 4
fedora 1
mageia 1
ibm
ibm
Security Bulletin: WebSphere Application Server - Oracle CPU shipped with Rational Application Developer for WebSphere Software June 2013 (CVE-2013-1571)
2020-02-05 00:09:48
Security Bulletin: IBM Tivoli Composite Application Manager for Transactions affected by vulnerabilities in IBM JRE (Multiple CVEs)
2022-09-25 21:06:56
Security Bulletin: WebSphere Application Server - IBM SDK for Java June 2013 CPU
2022-09-25 21:06:56
nessus
nessus
SuSE 11.2 / 11.3 Security Update : java-1_7_0-ibm (SAT Patch Numbers 8106 / 8108)
2013-07-26 00:00:00
SuSE 10 Security Update : java-1_6_0-ibm (ZYPP Patch Number 8657)
2013-07-26 00:00:00
SuSE 10 Security Update : java-1_5_0-ibm (ZYPP Patch Number 8653)
2013-07-28 00:00:00
suse
suse
Security update for java-1_7_0-ibm (important)
2013-07-25 20:04:26
Security update for java-1_5_0-ibm (important)
2013-07-27 17:04:14
Security update for IBM Java 1.6.0 (important)
2013-08-06 23:04:12
veracode
veracode
Privilege Escalation
2019-05-02 04:46:29
Arbitrary Code Execution
2019-05-02 04:46:33
Privilege Escalation
2019-05-02 04:46:31
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2013:1257-1)
2021-06-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2013:1263-1)
2021-06-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2013:1263-2)
2021-06-09 00:00:00
redhat
redhat
(RHSA-2013:1081) Important: java-1.5.0-ibm security update
2013-07-16 00:00:00
(RHSA-2013:1060) Critical: java-1.7.0-ibm security update
2013-07-15 00:00:00
(RHSA-2013:1059) Critical: java-1.6.0-ibm security update
2013-07-15 00:00:00
securityvulns
securityvulns
APPLE-SA-2013-04-16-2 Java for OS X 2013-003 and Mac OS X v10.6 Update 15
2013-04-22 00:00:00
Oracle Java multiple security vulnerabilities
2013-08-28 00:00:00
amazon
amazon
Important: java-1.7.0-openjdk
2013-06-20 14:14:00
Critical: java-1.7.0-openjdk
2013-04-18 13:59:00
Important: java-1.6.0-openjdk
2013-07-12 15:31:00
centos
centos
java security update
2013-06-20 06:43:01
java security update
2013-06-20 06:46:44
java security update
2013-04-17 21:01:08
debian
debian
[SECURITY] [DSA 2722-1] openjdk-7 security update
2013-07-15 15:52:23
ubuntu
ubuntu
OpenJDK 7 vulnerabilities
2013-07-16 00:00:00
IcedTea Web update
2013-07-16 00:00:00
OpenJDK 6 vulnerabilities
2013-07-23 00:00:00
oraclelinux
oraclelinux
java-1.7.0-openjdk security update
2013-06-19 00:00:00
java-1.7.0-openjdk security update
2013-04-17 00:00:00
java-1.7.0-openjdk security update
2013-04-17 00:00:00
fedora
fedora
[SECURITY] Fedora 19 Update: java-1.7.0-openjdk-1.7.0.19-2.3.9.6.fc19
2013-04-25 14:19:39
mageia
mageia
Updated java-1.7.0-openjdk packages fix multiple security vulnerabilities
2013-06-26 22:13:26

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

JSON
Related for BA5FC59AD4CA540F948C75EA478904F8A2D0A949B970697DAED42B661E911F37
ibm21nessus62suse18veracode10openvas55redhat11securityvulns2amazon4centos4debian1ubuntu5oraclelinux4fedora1mageia1