Design/Logic Flaw

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Networking. NOTE: the previous...

Design/Logic Flaw

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different...

CVE-2013-2466

CVE-2013-2466 concerns Oracle Java SE JRE, affecting Java Runtime Environment (JRE) 7 Update 21 and earlier and 6 Update 45 and earlier. The vulnerability is described as unspecified and resides in the Deployment component, enabling remote attackers to affect confidentiality, integrity, and avail...

CVE-2013-2443

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Libraries, a different...

CVE-2013-2449

CVE-2013-2449 affects the Java Runtime Environment (JRE) Libraries component in Oracle Java SE 7 Update 21 and earlier, and in OpenJDK 7. The MiracleLinux AXSA advisory confirms the vulnerability as “Unspecified” with remote confidentiality impact via Libraries. The connected IBM advisories corro...

CVE-2013-2455

CVE-2013-2455 is an Oracle Java/JRE vulnerability (June 2013 CPU era) described as an unspecified issue in the JRE Libraries component that could allow a remote attacker to obtain sensitive information. Public IBM advisories (and the NVD entry) indicate the issue affects Oracle Java SE 7 up to up...

CVE-2013-2450

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect availability via unknown vectors related to Serialization. NOTE: the previous...

CVE-2013-2445

CVE-2013-2445 is an unspecified vulnerability in the Java Runtime Environment (JRE)/Hotspot affecting availability via unknown vectors, with a note that it may bypass the Java sandbox through memory allocation error handling. Publicly listed affected products include Oracle Java SE 7 Update 21 an...

CVE-2013-2460

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Serviceability. NOTE: the previous information is from th...

CVE-2013-2451

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier, and OpenJDK 7, allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Networking. NOTE: the previous...

CVE-2013-3744

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier allows remote attackers to affect integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2013-2400...

CVE-2013-2467

CVE-2013-2467 is a Java Runtime Environment (JRE) vulnerability listed in IBM advisories as addressed by upgrading the IBM JRE to 1.7 SR5 or later (or switching to Oracle JRE) for affected IBM products such as Host On-Demand. IBM’s bulletin groups CVE-2013-2467 among many JRE-related flaws fixed ...

CVE-2013-3743

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 6 Update 45 and earlier and 5.0 Update 45 and earlier allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT...

CVE-2013-2465

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2...

CVE-2013-2471

CVE-2013-2471 is a remote-code-execution type vulnerability in the Java 2D/awt stack affecting Oracle JRE/JDK and OpenJDK (across 6 and 7 lines) identified by multiple advisories. The issue is described as memory corruption in the 2D component related to IntegerComponentRaster size checks, with p...

CVE-2013-2446

CVE-2013-2446 is present in Oracle/OpenJDK JRE components as part of the June 2013 CPU, with CORBA output streams access restrictions. MiracleLinux advisories AXSA:2013-553:03 (MiracleLinux 3) and AXSA:2013-486:05 (MiracleLinux 4) enumerate this CVE among several OpenJDK/JRE issues and provide re...

CVE-2013-2442

CVE-2013-2442 is an unspecified vulnerability in Oracle Java SE JRE deployments affecting Java 7u21 and earlier, and Java 6u45 and earlier. The issue is described as remote, impacting confidentiality, integrity, and availability via unknown vectors related to Deployment, and is distinct from CVE-...

CVE-2013-1500

CVE-2013-1500 is described in multiple IBM advisories as an unspecified vulnerability in the Java Runtime Environment (JRE) 2D component that can affect confidentiality and integrity, primarily via local vectors. MiracleLinux/OpenJDK/Oracle Java references (CVE-2013-1500) indicate affected platfo...

CVE-2013-2458

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality and integrity via unknown vectors related to Libraries. NOTE: the previous information is from the June 2013 CPU...

CVE-2013-2407

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality and availability via unknown vectors related to Libraries. NOTE: the previous information...