Lucene search
K

215 matches found

ArchLinux
ArchLinux
added 2016/03/29 12:0 a.m.62 views

jre8-openjdk-headless: sandbox escape

It was discovered that the security fix for CVE-2013-5838 was incomplete and still allowed remote attackers to escape the Java security sandbox mechanism. The root problem is that the Reflection API does not properly guarantee type safety when Method Handle objects were invoked across two differe...

9.3CVSS2.8AI score0.05765EPSS
Exploits0References2
ArchLinux
ArchLinux
added 2016/03/29 12:0 a.m.47 views

jre8-openjdk: sandbox escape

It was discovered that the security fix for CVE-2013-5838 was incomplete and still allowed remote attackers to escape the Java security sandbox mechanism. The root problem is that the Reflection API does not properly guarantee type safety when Method Handle objects were invoked across two differe...

9.3CVSS2.8AI score0.05765EPSS
Exploits0References2
ArchLinux
ArchLinux
added 2016/03/29 12:0 a.m.77 views

jdk8-openjdk: sandbox escape

It was discovered that the security fix for CVE-2013-5838 was incomplete and still allowed remote attackers to escape the Java security sandbox mechanism. The root problem is that the Reflection API does not properly guarantee type safety when Method Handle objects were invoked across two differe...

9.3CVSS2.8AI score0.05765EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2016/03/24 11:58 p.m.12 views

OpenJDK: missing type safety checks for MethodHandle calls across class loaders, incorrect CVE-2013-5838 fix (Hotspot, 8151666)

An improper type safety check was discovered in the Hotspot component. An untrusted Java application or applet could use this flaw to bypass Java Sandbox restrictions...

9.3CVSS7.4AI score0.05765EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2016/03/24 11:58 p.m.7 views

OpenJDK: missing type safety checks for MethodHandle calls across class loaders, incorrect CVE-2013-5838 fix (Hotspot, 8151666)

An improper type safety check was discovered in the Hotspot component. An untrusted Java application or applet could use this flaw to bypass Java Sandbox restrictions...

9.3CVSS7.4AI score0.05765EPSS
Exploits0References4
FreeBSD
FreeBSD
added 2016/02/18 12:0 a.m.48 views

bsh -- remote code execution vulnerability

Stian Soiland-Reyes reports: This release fixes a remote code execution vulnerability that was identified in BeanShell by Alvaro Muñoz and Christian Schneider. The BeanShell team would like to thank them for their help and contributions to this fix! An application that includes BeanShell on the...

8.1CVSS1.7AI score0.70425EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2015/02/24 1:44 p.m.8 views

OpenJDK: incorrect context class loader use in RMI transport (RMI, 8055309)

An improper permission check issue was discovered in the RMI component in OpenJDK. An untrusted Java application or applet could use these flaws to bypass Java sandbox restrictions...

10CVSS6.8AI score0.06877EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2015/02/24 1:20 p.m.7 views

OpenJDK: incorrect context class loader use in RMI transport (RMI, 8055309)

An improper permission check issue was discovered in the RMI component in OpenJDK. An untrusted Java application or applet could use these flaws to bypass Java sandbox restrictions...

10CVSS6.8AI score0.06877EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2015/02/05 7:35 p.m.7 views

OpenJDK: incorrect class loader permission check in ClassLoader getParent() (Libraries, 8055314)

An improper permission check issue was discovered in the Libraries component in OpenJDK. An untrusted Java application or applet could use these flaws to bypass Java sandbox restrictions...

10CVSS6.1AI score0.04577EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2015/02/05 7:35 p.m.6 views

OpenJDK: incorrect context class loader use in RMI transport (RMI, 8055309)

An improper permission check issue was discovered in the RMI component in OpenJDK. An untrusted Java application or applet could use these flaws to bypass Java sandbox restrictions...

10CVSS6.8AI score0.06877EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2015/02/05 7:34 p.m.7 views

OpenJDK: incorrect class loader permission check in ClassLoader getParent() (Libraries, 8055314)

An improper permission check issue was discovered in the Libraries component in OpenJDK. An untrusted Java application or applet could use these flaws to bypass Java sandbox restrictions...

10CVSS6.1AI score0.04577EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2015/02/05 7:34 p.m.6 views

OpenJDK: incorrect context class loader use in RMI transport (RMI, 8055309)

An improper permission check issue was discovered in the RMI component in OpenJDK. An untrusted Java application or applet could use these flaws to bypass Java sandbox restrictions...

10CVSS6.8AI score0.06877EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2015/02/05 7:29 p.m.6 views

OpenJDK: incorrect context class loader use in RMI transport (RMI, 8055309)

An improper permission check issue was discovered in the RMI component in OpenJDK. An untrusted Java application or applet could use these flaws to bypass Java sandbox restrictions...

10CVSS6.8AI score0.06877EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2015/01/26 6:10 p.m.7 views

OpenJDK: incorrect context class loader use in RMI transport (RMI, 8055309)

An improper permission check issue was discovered in the RMI component in OpenJDK. An untrusted Java application or applet could use these flaws to bypass Java sandbox restrictions...

10CVSS6.8AI score0.06877EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2015/01/26 5:27 p.m.7 views

OpenJDK: incorrect context class loader use in RMI transport (RMI, 8055309)

An improper permission check issue was discovered in the RMI component in OpenJDK. An untrusted Java application or applet could use these flaws to bypass Java sandbox restrictions...

10CVSS6.8AI score0.06877EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2015/01/22 9:24 p.m.6 views

OpenJDK: incorrect class loader permission check in ClassLoader getParent() (Libraries, 8055314)

An improper permission check issue was discovered in the Libraries component in OpenJDK. An untrusted Java application or applet could use these flaws to bypass Java sandbox restrictions...

10CVSS6.1AI score0.04577EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2015/01/21 9:38 p.m.7 views

OpenJDK: incorrect context class loader use in RMI transport (RMI, 8055309)

An improper permission check issue was discovered in the RMI component in OpenJDK. An untrusted Java application or applet could use these flaws to bypass Java sandbox restrictions...

10CVSS6.8AI score0.06877EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2015/01/20 10:38 p.m.7 views

OpenJDK: incorrect context class loader use in RMI transport (RMI, 8055309)

An improper permission check issue was discovered in the RMI component in OpenJDK. An untrusted Java application or applet could use these flaws to bypass Java sandbox restrictions...

10CVSS6.8AI score0.06877EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2014/11/20 4:31 p.m.8 views

OpenJDK: LogRecord use of incorrect CL when loading ResourceBundle (Libraries, 8042797)

Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20, and Java SE Embedded 7u60, allows remote attackers to affect integrity via unknown vectors related to Libraries...

2.6CVSS6.7AI score0.03089EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2014/11/20 4:16 p.m.6 views

OpenJDK: LogRecord use of incorrect CL when loading ResourceBundle (Libraries, 8042797)

Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20, and Java SE Embedded 7u60, allows remote attackers to affect integrity via unknown vectors related to Libraries...

2.6CVSS6.7AI score0.03089EPSS
Exploits0References5
Rows per page
Query Builder