6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
8.4 High
AI Score
Confidence
Low
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.917 High
EPSS
Percentile
98.9%
01/15/2019
High
Multiple vulnerabilities were found in Oracle Java SE. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information.
Oracle Java JRE 1.8.x earlier than 8u201
Update to the latest version
Oracle Critical Patch Update Advisory – January 2019
OSI
CVE-2018-112124.3Warning
CVE-2019-24264.3Warning
CVE-2019-24492.6Warning
CVE-2019-24222.6Warning
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11212
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2422
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2426
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2449
statistics.securelist.com/vulnerability-scan/month
threats.kaspersky.com/en/product/Oracle-Java-JRE-1.7.x/
threats.kaspersky.com/en/product/Oracle-Java-JRE-1.8.x/
www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html#AppendixJAVA
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
8.4 High
AI Score
Confidence
Low
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.917 High
EPSS
Percentile
98.9%