Lucene search
K

38 matches found

RedHat Linux
RedHat Linux
added 2013/11/07 4:45 p.m.1 views

OpenJDK: Missing CORBA security checks (Libraries, 8017196)

Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different...

9.3CVSS6.8AI score0.05501EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2013/11/05 5:58 p.m.4 views

OpenJDK: insufficient DataFlavor security checks (AWT, 8012277)

Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality via vectors related to AWT...

4.3CVSS6.8AI score0.03433EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2013/07/15 8:32 p.m.5 views

OpenJDK: JConsole SSL support (Serviceability, 8003703)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Serviceability. NOTE: the previous information is from the...

5CVSS6.8AI score0.04783EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2013/03/11 6:48 p.m.7 views

OpenJDK: disable Gopher support by default (Gopher, 7189567)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, 5.0 Update 36 and earlier, and 1.4.238 and earlier allows remote authenticated users to have an unspecified impact via unknown vectors related to Networking...

7.4AI score0.02172EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2013/02/08 7:4 p.m.6 views

OpenJDK: insufficient clipboard access premission checks (AWT, 7186952)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.240 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality and integrity via vectors related to AWT. NOTE...

6.4CVSS7.4AI score0.04875EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2012/11/15 9:3 p.m.4 views

OpenJDK: Executors state handling issues (Concurrency, 7189103)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, and 5.0 Update 36 and earlier allows remote attackers to affect confidentiality and integrity via unknown vectors related to Concurrency...

5.8CVSS7.4AI score0.02833EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2012/11/15 8:58 p.m.6 views

OpenJDK: RMIConnectionImpl insufficient access control checks (JMX, 7198296)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, and 5.0 Update 36 and earlier allows remote attackers to affect confidentiality, integrity, and availability, related to JMX, a different vulnerability than...

7.6CVSS7.4AI score0.04826EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2012/11/15 8:58 p.m.3 views

OpenJDK: java.io.FilePermission information leak (Libraries, 6631398)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, 5.0 Update 36 and earlier, and 1.4.238 and earlier allows remote attackers to affect confidentiality via unknown vectors related to Libraries...

2.6CVSS7.4AI score0.02878EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2012/11/15 8:58 p.m.5 views

JDK: unspecified vulnerability (JMX)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, and 5.0 Update 36 and earlier allows remote attackers to affect confidentiality, integrity, and availability, related to JMX, a different vulnerability than...

10CVSS7.4AI score0.05572EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2012/02/29 2:46 p.m.2 views

OpenJDK: RMI registry privileged code execution (RMI, 7083012)

Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier, 1.4.233 and earlier, and JRockit R28.1.4 and earlier allows remote attackers to affect confidentiality, integrity, and availability, related to...

6.8CVSS7.4AI score0.03477EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2011/02/17 6:12 p.m.3 views

JDK unspecified vulnerability in Sound component

Unspecified vulnerability in the Java Runtime Environment JRE in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.229 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound and...

10CVSS7.4AI score0.05489EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2010/05/12 4:21 p.m.3 views

OpenJDK JRE AWT setDifflCM stack overflow (6872357)

Stack-based buffer overflow in the setDiffICM function in the Abstract Window Toolkit AWT in Java Runtime Environment JRE in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, SDK and JRE 1.3.x before 1.3.127, and SDK and JRE 1.4.x before 1.4.224 allows remote...

9.3CVSS6.4AI score0.65461EPSS
Exploits9References4
RedHat Linux
RedHat Linux
added 2010/01/14 4:32 p.m.2 views

OpenJDK LDAP client remote code execution (6737315)

Unspecified vulnerability in the LDAP implementation in Java SE Development Kit JDK and Java Runtime Environment JRE 5.0 Update 17 and earlier; 6 Update 12 and earlier; SDK and JRE 1.3.124 and earlier; and 1.4.219 and earlier allows remote LDAP servers to execute arbitrary code via unknown vector...

10CVSS6.5AI score0.04389EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2009/12/08 7:9 p.m.0 views

java-1.6.0-sun: Stack-based buffer overflow via a long file: URL argument (6854303)

Stack-based buffer overflow in the HsbParser.getSoundBank function in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, SDK and JRE 1.3.x before 1.3.127, and SDK and JRE 1.4.x before 1.4.224 allows remote attackers to execute arbitrary code via a long file: URL in a...

9.3CVSS6.4AI score0.73376EPSS
Exploits11References4
RedHat Linux
RedHat Linux
added 2009/11/09 3:4 p.m.5 views

OpenJDK MessageDigest.isEqual introduces timing attack vulnerabilities (6863503)

The MessageDigest.isEqual function in Java Runtime Environment JRE in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, SDK and JRE 1.3.x before 1.3.127, and SDK and JRE 1.4.x before 1.4.224 allows remote attackers to spoof HMAC-based digital signatures, and possibl...

5CVSS5.9AI score0.03107EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2009/08/06 9:14 p.m.6 views

OpenJDK Untrusted applet System properties access (6738524)

The audio system in Sun Java Runtime Environment JRE in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, does not prevent access to java.lang.System properties by 1 untrusted applets and 2 Java Web Start applications, which allows context-dependent attackers to obtain sensiti...

5CVSS6.1AI score0.03286EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2008/12/04 3:45 p.m.5 views

OpenJDK Truetype Font processing vulnerability (6751322)

Integer overflow in Java Runtime Environment JRE for Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; SDK and JRE 1.4.218 and earlier; and SDK and JRE 1.3.123 and earlier might allow remote attackers to execute arbitrary code via a crafted TrueType font file, which...

9.3CVSS8AI score0.10015EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2008/12/04 3:45 p.m.3 views

OpenJDK UTF-8 decoder accepts non-shortest form sequences (4486841)

Java Runtime Environment JRE for Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; and SDK and JRE 1.4.218 and earlier accepts UTF-8 encodings that are not the "shortest" form, which makes it easier for attackers to bypass protection mechanisms for other applications...

7.5CVSS7.2AI score0.03426EPSS
Exploits1References4
Rows per page
Query Builder