Buffer overflow

Unspecified vulnerability in Oracle Java SE 7u40 and earlier, 6u60 and earlier, 5.0u51 and earlier, and Embedded 7u40 and earlier allows remote attackers to affect confidentiality via unknown vectors related to 2D...

Design/Logic Flaw

Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect integrity via vectors related to SCRIPTING...

CVE-2013-3829

Unspecified vulnerability in the Java SE, Java SE Embedded component in Oracle Java SE Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality and integrity via unknown vectors related ...

CVE-2013-5772

Unspecified vulnerability in the Java SE component in Oracle Java SE Java SE 7u40 and earlier and Java SE 6u60 and earlier allows remote attackers to affect integrity via unknown vectors related to jhat...

CVE-2013-5776

Unspecified vulnerability in the Java SE and Java SE Embedded components in Oracle Java SE Java SE 7u40 and earlier, Java SE 6u60 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect integrity via unknown vectors related to Deployment...

CVE-2013-3829

CVE-2013-3829 is listed among multiple vulnerabilities in the IBM SDK/Java offerings shipped with IBM products (e.g., WebSphere Application Server, Tivoli/Maximo suites, ITCAM, ODM/JRules). The IBM advisories indicate these issues stem from the Oracle October 2013 Java SE CPU fixes and require up...

CVE-2013-5772

CVE-2013-5772 is an unspecified vulnerability in the Java SE component affecting Oracle Java SE 7u40 and earlier and Java SE 6u60 and earlier, with impact to integrity via unknown vectors related to jhat. The Connected IBM/IBM WebSphere/WebSphere Real Time advisories list CVE-2013-5772 among many...

CVE-2013-5775

CVE-2013-5775 is an unspecified vulnerability in Oracle Java SE 7u40 and earlier and JavaFX 2.2.40 and earlier that could affect confidentiality, integrity, and availability via unknown vectors. The connected material confirms the affected components (Java SE and JavaFX) and the affected versions...

CVE-2013-5776

CVE-2013-5776 is documented in IBM advisories as an unspecified vulnerability within the Oracle Java Deployment context affecting IBM Java/SDK components. The IBM WebSphere Real Time product line lists it under AFFECTED PRODUCTS AND VERSIONS: IBM WebSphere Real Time 3.0 Service Refresh 5 and earl...

CVE-2013-5777

Technical details for CVE-2013-5777 are not publicly available in the provided documents. Monitor for updates from official advisories and vendor notices.

CVE-2013-5780

CVE-2013-5780 is described as an unspecified vulnerability in Oracle Java/JVM libraries affecting confidentiality (partial) and is rated CVSS 4.3 (NVD). IBM advisories reiterate that the IBM SDK/JAVA components (versions 5, 6, 7) are affected and provide remediation by upgrading to newer IBM JRE/...

CVE-2013-5790

CVE-2013-5790 is an unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier that could allow remote attackers to affect confidentiality via vectors related to BEANS. Affected products/versions includ...

CVE-2013-5788

CVE-2013-5788 is part of a cluster of Java vulnerabilities disclosed in Oracle’s October 2013 CPU; IBM advisories enumerate this CVE among many in the IBM SDK for Java and WebSphere products. The IBM bulletins indicate affected IBM SDK Java Technology Edition versions (5, 6, 7, and 1.4.2) and num...

CVE-2013-5777

Unspecified vulnerability in the Java SE and JavaFX components in Oracle Java SE 7u40 and earlier and JavaFX 2.2.40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2013-5775...

CVE-2013-5784

Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect integrity via vectors related to SCRIPTING...

Oracle Releases October 2013 Security Advisory

Oracle has released its Critical Patch Update for October 2013 to address 127 vulnerabilities across multiple products. This update contains the following security fixes: 2 for Oracle Database Server 17 for Oracle Fusion Middleware 4 for Oracle Enterprise Manager Grid Control 1 for Oracle...

Oracle Critical Patch Update - October 2013

A Critical Patch Update CPU is a collection of patches for multiple security vulnerabilities. Critical Patch Update patches are usually cumulative, but each advisory describes only the security fixes added since the previous Critical Patch Update advisory. Thus, prior Critical Patch Update...

OpenJDK: Insecure shared memory permissions (2D, 8001034)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows local users to affect confidentiality and integrity via unknown vectors related to 2D. NOTE: the previou...

OpenJDK: Prevent revealing the local address (Networking, 8001318)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Networking. NOTE: the previous...

JDK: unspecified vulnerability fixed in 7u25 (Deployment)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment...