CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
Confidence
High
EPSS
Percentile
98.4%
Multiple unspecified vulnerabilities in the JRE component in IBM Java 7 SR2 and earlier, Java 6.0.1 SR3 and earlier, Java 6 SR11 and earlier, Java 5 SR14 and earlier, and Java 142 SR13 FP13 and earlier; as used in IBM Rational Host On-Demand, Rational Change, Tivoli Monitoring, Smart Analytics System 5600, Tivoli Remote Control 5.1.2, WebSphere Real Time, Lotus Notes & Domino, Tivoli Storage Productivity Center, and Service Deliver Manager; and other products from other vendors such as Red Hat, allow remote attackers to execute arbitrary code via vectors related to “insecure use [of] multiple methods in the java.lang.class class.”
Vendor | Product | Version | CPE |
---|---|---|---|
ibm | java | * | cpe:2.3:a:ibm:java:*:*:*:*:*:*:*:* |
ibm | lotus_domino | 8.0 | cpe:2.3:a:ibm:lotus_domino:8.0:*:*:*:*:*:*:* |
ibm | lotus_domino | 8.0.1 | cpe:2.3:a:ibm:lotus_domino:8.0.1:*:*:*:*:*:*:* |
ibm | lotus_domino | 8.0.2 | cpe:2.3:a:ibm:lotus_domino:8.0.2:*:*:*:*:*:*:* |
ibm | lotus_domino | 8.0.2.1 | cpe:2.3:a:ibm:lotus_domino:8.0.2.1:*:*:*:*:*:*:* |
ibm | lotus_domino | 8.0.2.2 | cpe:2.3:a:ibm:lotus_domino:8.0.2.2:*:*:*:*:*:*:* |
ibm | lotus_domino | 8.0.2.3 | cpe:2.3:a:ibm:lotus_domino:8.0.2.3:*:*:*:*:*:*:* |
ibm | lotus_domino | 8.0.2.4 | cpe:2.3:a:ibm:lotus_domino:8.0.2.4:*:*:*:*:*:*:* |
ibm | lotus_domino | 8.5.0 | cpe:2.3:a:ibm:lotus_domino:8.5.0:*:*:*:*:*:*:* |
ibm | lotus_domino | 8.5.0.1 | cpe:2.3:a:ibm:lotus_domino:8.5.0.1:*:*:*:*:*:*:* |
rhn.redhat.com/errata/RHSA-2012-1465.html
rhn.redhat.com/errata/RHSA-2012-1466.html
rhn.redhat.com/errata/RHSA-2012-1467.html
rhn.redhat.com/errata/RHSA-2013-1455.html
rhn.redhat.com/errata/RHSA-2013-1456.html
seclists.org/bugtraq/2012/Sep/38
secunia.com/advisories/51326
secunia.com/advisories/51327
secunia.com/advisories/51328
secunia.com/advisories/51393
secunia.com/advisories/51634
www-01.ibm.com/support/docview.wss?uid=swg1IV29665
www-01.ibm.com/support/docview.wss?uid=swg21615705
www-01.ibm.com/support/docview.wss?uid=swg21615800
www-01.ibm.com/support/docview.wss?uid=swg21616490
www-01.ibm.com/support/docview.wss?uid=swg21616594
www-01.ibm.com/support/docview.wss?uid=swg21616616
www-01.ibm.com/support/docview.wss?uid=swg21616617
www-01.ibm.com/support/docview.wss?uid=swg21616652
www-01.ibm.com/support/docview.wss?uid=swg21616708
www-01.ibm.com/support/docview.wss?uid=swg21621154
www-01.ibm.com/support/docview.wss?uid=swg21631786
www.securityfocus.com/bid/55495
exchange.xforce.ibmcloud.com/vulnerabilities/78766
www-304.ibm.com/support/docview.wss?uid=swg21616546