2579 matches found
CVE-2013-2455
CVE-2013-2455 is an Oracle Java/JRE vulnerability (June 2013 CPU era) described as an unspecified issue in the JRE Libraries component that could allow a remote attacker to obtain sensitive information. Public IBM advisories (and the NVD entry) indicate the issue affects Oracle Java SE 7 up to up...
CVE-2013-2442
CVE-2013-2442 is an unspecified vulnerability in Oracle Java SE JRE deployments affecting Java 7u21 and earlier, and Java 6u45 and earlier. The issue is described as remote, impacting confidentiality, integrity, and availability via unknown vectors related to Deployment, and is distinct from CVE-...
CVE-2013-3743
Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 6 Update 45 and earlier and 5.0 Update 45 and earlier allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT...
CVE-2013-2460
Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Serviceability. NOTE: the previous information is from th...
CVE-2013-2451
Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier, and OpenJDK 7, allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Networking. NOTE: the previous...
CVE-2013-2449
CVE-2013-2449 affects the Java Runtime Environment (JRE) Libraries component in Oracle Java SE 7 Update 21 and earlier, and in OpenJDK 7. The MiracleLinux AXSA advisory confirms the vulnerability as “Unspecified” with remote confidentiality impact via Libraries. The connected IBM advisories corro...
CVE-2013-2446
CVE-2013-2446 is present in Oracle/OpenJDK JRE components as part of the June 2013 CPU, with CORBA output streams access restrictions. MiracleLinux advisories AXSA:2013-553:03 (MiracleLinux 3) and AXSA:2013-486:05 (MiracleLinux 4) enumerate this CVE among several OpenJDK/JRE issues and provide re...
CVE-2013-2445
CVE-2013-2445 is an unspecified vulnerability in the Java Runtime Environment (JRE)/Hotspot affecting availability via unknown vectors, with a note that it may bypass the Java sandbox through memory allocation error handling. Publicly listed affected products include Oracle Java SE 7 Update 21 an...
CVE-2013-2461
Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier; the Oracle JRockit component in Oracle Fusion Middleware R27.7.5 and earlier and R28.2.7 and earlier; and OpenJDK 7 allows remote attackers to affect...
CVE-2013-2465
Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2...
CVE-2013-2465
Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2...
CVE-2013-2467
CVE-2013-2467 is a Java Runtime Environment (JRE) vulnerability listed in IBM advisories as addressed by upgrading the IBM JRE to 1.7 SR5 or later (or switching to Oracle JRE) for affected IBM products such as Host On-Demand. IBM’s bulletin groups CVE-2013-2467 among many JRE-related flaws fixed ...
CVE-2013-2463
Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2...
CVE-2013-3744
Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier allows remote attackers to affect integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2013-2400...
CVE-2013-2443
Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Libraries, a different...
CVE-2013-1500
CVE-2013-1500 is described in multiple IBM advisories as an unspecified vulnerability in the Java Runtime Environment (JRE) 2D component that can affect confidentiality and integrity, primarily via local vectors. MiracleLinux/OpenJDK/Oracle Java references (CVE-2013-1500) indicate affected platfo...
Oracle Java SE CVE-2013-2460 Remote Java Runtime Environment Vulnerability
Description Oracle Java SE is prone to a remote vulnerability in Java Runtime Environment. An attacker can exploit this issue to bypass sandbox restrictions and execute arbitrary code in the context of the application. This vulnerability affects the following supported versions: 7 Update 21...
CVE-2013-2449
Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Libraries. NOTE: the previous information is from the June 2013 CPU. Oracle has not...
CVE-2013-3743
Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 6 Update 45 and earlier and 5.0 Update 45 and earlier allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT...
CVE-2013-2461
Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier; the Oracle JRockit component in Oracle Fusion Middleware R27.7.5 and earlier and R28.2.7 and earlier; and OpenJDK 7 allows remote attackers to affect...