Security Bulletin: Java Vulnerability Impacts IBM Control Center (CVE-2019-4723)

Summary There is a vulnerability in IBM® Runtime Environment Java™ Technology Edition, Version 7 and 8 that is used by IBM Control Center. The issue was disclosed as part of the IBM Java SDK update in January 2020. Vulnerability Details CVEID: CVE-2019-4732 DESCRIPTION: IBM SDK, Java Technology...

DEBIAN-CVE-2020-2767

Vulnerability in the Java SE product of Oracle Java SE component: JSSE. Supported versions that are affected are Java SE: 11.0.6 and 14. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Java SE. Successful attacks of this vulnerability...

Privilege Escalation

ibm java is vulnerable to privilege escalation. A flaw was found in the way JAXP Java API for XML Processing components were handled, allowing them to be manipulated by untrusted applets. This could be used to elevate privileges and bypass secure XML processing restrictions...

Privilege Escalation

java is vulnerable to privilege escalation. An unspecified vulnerability allows an attacker to affect confidentiality, integrity and availability of the system via unknown vectors...

Privilege Escalation

java is vulnerable to privilege escalation. An unspecified vulnerability allows an attacker to affect confidentiality, integrity and availability of the system via unknown vectors...

Privilege Escalation

java is vulnerable to privilege escalation. An unspecified vulnerability allows an attacker to affect confidentiality, integrity and availability of the system via unknown vectors...

Privilege Escalation

java is vulnerable to privilege escalation. An unspecified vulnerability allows an attacker to affect confidentiality, integrity and availability of the system via unknown vectors...

Privilege Escalation

java is vulnerable to privilege escalation. An unspecified vulnerability allows an attacker to affect confidentiality, integrity and availability of the system via unknown vectors...

Privilege Escalation

java is vulnerable to privilege escalation. An unspecified vulnerability allows an attacker to affect confidentiality, integrity and availability of the system via unknown vectors...

Privilege Escalation

java is vulnerable to privilege escalation. An unspecified vulnerability allows an attacker to affect confidentiality, integrity and availability of the system via unknown vectors...

Privilege Escalation

java is vulnerable to privilege escalation. An unspecified vulnerability allows remote attackers to affect confidentiality, integrity and availability via unknown vectors...

Privilege Escalation

java is vulnerable to privilege escalation. An unspecified vulnerability allows remote attackers to affect confidentiality, integrity and availability via unknown vectors...

Denial Of Service (DoS)

java is vulnerable to denial of service. An unspecified vulnerability allows remote attackers to affect availability via unknown vectors...

Privilege Escalation

java is vulnerable to privilege escalation. An unspecified vulnerability allows an attacker to affect integrity and availability of the system via unknown vectors...

Privilege Escalation

java is vulnerable to privilege escalation. The vulnerability exists as a flaw in the JRE with passing arrays to the X11GraphicsDevice API was found. An untrusted applet or application could use this flaw to access and modify the list of supported graphics configurations. This flaw could also lea...

Privilege Escalation

ibm java is vulnerable to privilege escalation. A remote attacker is able to obtain higher privileges using a malicious image file...

Arbitrary Code Execution

ibm java is vulnerable to arbitrary code execution. An attacker is able to execute arbitrary code by modifying certain JNLP file to point a URL to an untrusted application...

Arbitrary Code Execution

java is vulnerable to arbitrary code execution. A remote attacker is able to execute arbitrary code on the system via a malicious glyph description in Type1 font...

Arbitrary Code Execution

java is vulnerable to arbitrary code execution. A remote attacker is able to execute arbitrary using a JAR file using malicious Pack200 headers...

Security Bulletin: IBM API Connect is impacted by an unspecified vulnerability in Java (CVE-2020-2604)

Summary IBM API Connect has addressed the following vulnerability. Vulnerability Details CVEID: CVE-2020-2604 DESCRIPTION: An unspecified vulnerability in Java SE could allow an unauthenticated attacker to take control of the system. CVSS Base score: 8.1 CVSS Temporal Score: See:...