CVE-2012-1543

2013-02-0200:55:01

[email protected]

web.nvd.nist.gov

CVSS2

7.6

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

AI Score

5.7

Confidence

Low

EPSS

0.029

Percentile

90.8%

JSON

Unspecified vulnerability in the JavaFX component in Oracle Java SE JavaFX 2.2.4 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than other CVEs listed in the February 2013 CPU. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from a third party that the issue is due to an invalid type cast in the JSObject class.

Affected configurations

Nvd

Node

oraclejavafxRange≤2.2.4

oraclejavafxMatch2.0

oraclejavafxMatch2.0.2

oraclejavafxMatch2.0.3

oraclejavafxMatch2.1

oraclejavafxMatch2.2

oraclejavafxMatch2.2.3

VendorProductVersionCPE
oraclejavafx*cpe:2.3:a:oracle:javafx:*:*:*:*:*:*:*:*
oraclejavafx2.0cpe:2.3:a:oracle:javafx:2.0:*:*:*:*:*:*:*
oraclejavafx2.0.2cpe:2.3:a:oracle:javafx:2.0.2:*:*:*:*:*:*:*
oraclejavafx2.0.3cpe:2.3:a:oracle:javafx:2.0.3:*:*:*:*:*:*:*
oraclejavafx2.1cpe:2.3:a:oracle:javafx:2.1:*:*:*:*:*:*:*
oraclejavafx2.2cpe:2.3:a:oracle:javafx:2.2:*:*:*:*:*:*:*
oraclejavafx2.2.3cpe:2.3:a:oracle:javafx:2.2.3:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
oracle	javafx	*	cpe:2.3:a:oracle:javafx::::::::
oracle	javafx	2.0	cpe:2.3:a:oracle:javafx:2.0:::::::*
oracle	javafx	2.0.2	cpe:2.3:a:oracle:javafx:2.0.2:::::::*
oracle	javafx	2.0.3	cpe:2.3:a:oracle:javafx:2.0.3:::::::*
oracle	javafx	2.1	cpe:2.3:a:oracle:javafx:2.1:::::::*
oracle	javafx	2.2	cpe:2.3:a:oracle:javafx:2.2:::::::*
oracle	javafx	2.2.3	cpe:2.3:a:oracle:javafx:2.2.3:::::::*