Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2011-2513
HistoryMay 14, 2014 - 12:55 a.m.

CVE-2011-2513

2014-05-1400:55:04
CWE-200
[email protected]
web.nvd.nist.gov

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.4 Medium

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

77.0%

JSON

The Java Network Launching Protocol (JNLP) implementation in IcedTea6 1.9.x before 1.9.9 and before 1.8.9, and IcedTea-Web 1.1.x before 1.1.1 and before 1.0.4, allows remote attackers to obtain the username and full path of the home and cache directories by accessing properties of the ClassLoader.

Affected configurations

NVD
Node
redhaticedtea-webRange1.0.3
OR
redhaticedtea-webMatch1.0
OR
redhaticedtea-webMatch1.0.1
OR
redhaticedtea-webMatch1.0.2
OR
redhaticedtea-webMatch1.1
Node
redhaticedtea6Range1.8.8
OR
redhaticedtea6Match1.8
OR
redhaticedtea6Match1.8.1
OR
redhaticedtea6Match1.8.2
OR
redhaticedtea6Match1.8.3
OR
redhaticedtea6Match1.8.4
OR
redhaticedtea6Match1.8.5
OR
redhaticedtea6Match1.8.6
OR
redhaticedtea6Match1.8.7
OR
redhaticedtea6Match1.9.1
OR
redhaticedtea6Match1.9.2
OR
redhaticedtea6Match1.9.3
OR
redhaticedtea6Match1.9.4
OR
redhaticedtea6Match1.9.5
OR
redhaticedtea6Match1.9.6
OR
redhaticedtea6Match1.9.7
OR
redhaticedtea6Match1.9.8

Related

prion 1
nessus 8
debiancve 1
cvelist 1
veracode 1
cve 1
ubuntucve 1
oraclelinux 1
redhat 1
openvas 11
fedora 3
ubuntu 1
prion
prion
Design/Logic Flaw
2014-05-14 00:55:00
nessus
nessus
Fedora 14 : java-1.6.0-openjdk-1.6.0.0-54.1.9.9.fc14 (2011-9523)
2011-08-02 00:00:00
Oracle Linux 6 : icedtea-web (ELSA-2011-1100)
2013-07-12 00:00:00
openSUSE Security Update : icedtea-web (openSUSE-SU-2011:0829-1)
2014-06-13 00:00:00
debiancve
debiancve
CVE-2011-2513
2014-05-14 00:55:04
cvelist
cvelist
CVE-2011-2513
2014-05-14 00:00:00
veracode
veracode
Information Disclosure
2020-04-10 01:01:24
cve
cve
CVE-2011-2513
2014-05-14 00:55:04
ubuntucve
ubuntucve
CVE-2011-2513
2011-07-20 00:00:00
oraclelinux
oraclelinux
icedtea-web security update
2011-07-27 00:00:00
redhat
redhat
(RHSA-2011:1100) Moderate: icedtea-web security update
2011-07-27 00:00:00
openvas
openvas
Ubuntu Update for icedtea-web USN-1178-1
2011-08-02 00:00:00
Fedora Update for icedtea-web FEDORA-2011-9541
2011-07-27 00:00:00
Ubuntu: Security Advisory (USN-1178-1)
2011-08-02 00:00:00
fedora
fedora
[SECURITY] Fedora 15 Update: icedtea-web-1.0.4-1.fc15
2011-07-22 19:33:36
[SECURITY] Fedora 14 Update: java-1.6.0-openjdk-1.6.0.0-54.1.9.9.fc14
2011-08-02 01:56:23
[SECURITY] Fedora 14 Update: java-1.6.0-openjdk-1.6.0.0-55.1.9.10.fc14
2011-10-20 09:53:34
ubuntu
ubuntu
IcedTea-Web, OpenJDK 6 vulnerabilities
2011-07-27 00:00:00

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.4 Medium

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

77.0%

JSON
Related for NVD:CVE-2011-2513
prion1nessus8debiancve1cvelist1veracode1cve1ubuntucve1oraclelinux1redhat1openvas11fedora3ubuntu1