CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

SUSE CVE•added 2023/02/15 6:11 a.m.•3 views

SUSE CVE-2007-3503

The Javadoc tool in Sun JDK 6 and JDK 5.0 Update 11 can generate HTML documentation pages that contain cross-site scripting XSS vulnerabilities, which allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS5.9AI score0.00874EPSS

Exploits1References3

NVD•added 2008/12/05 11:30 a.m.•23 views

CVE-2008-5356

Heap-based buffer overflow in Java Runtime Environment JRE for Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; and SDK and JRE 1.4.218 and earlier might allow remote attackers to execute arbitrary code via a crafted TrueType font file...

9.3CVSS7.9AI score0.14568EPSS

Exploits1References37

CVE•added 2008/12/05 11:0 a.m.•93 views

CVE-2008-5348

CVE-2008-5348 concerns an unspecified vulnerability in Sun JDK/JRE across multiple major versions (JDK/JRE 6 Update 10 and earlier; 5.0 Update 16 and earlier; 1.4.2_18 and earlier) that, when Kerberos authentication is used, can allow remote attackers to cause a denial of service through OS resou...

7.1CVSS7.3AI score0.12172EPSS

Exploits1References36Affected Software3

CVE•added 2008/12/05 11:0 a.m.•92 views

CVE-2008-5340

CVE-2008-5340 concerns an unspecified vulnerability in Java Web Start (JWS) and Java Plug-in affecting Sun JDK/JRE lines: Java SE 6 Update 10 and earlier; Java SE 5.0 Update 16 and earlier; and SDK/JRE 1.4.2_18 and earlier. The untrusted JWS applications can gain privileges to access local files ...

10CVSS7.6AI score0.03423EPSS

Exploits1References32Affected Software3

Cvelist•added 2008/12/05 11:0 a.m.•20 views

CVE-2008-5353

The Java Runtime Environment JRE for Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; and SDK and JRE 1.4.218 and earlier does not properly enforce context of ZoneInfo objects during deserialization, which allows remote attackers to run untrusted applets and...

7.5AI score0.89535EPSS

Exploits19References42

Prion•added 2008/03/06 9:44 p.m.•29 views

Design/Logic Flaw

Unspecified vulnerability in the Virtual Machine for Sun Java Runtime Environment JRE and JDK 5.0 Update 13 and earlier, and SDK/JRE 1.4.216 and earlier, allows remote attackers to gain privileges via an untrusted application or applet, a different issue than CVE-2008-1185, aka "the second issue....

9.3CVSS6.9AI score0.17994EPSS

Exploits0References24Affected Software3

UbuntuCve•added 2007/10/08 11:17 p.m.•29 views

CVE-2007-5273

Sun Java Runtime Environment JRE in JDK and JRE 6 Update 2 and earlier, JDK and JRE 5.0 Update 12 and earlier, SDK and JRE 1.4.215 and earlier, and SDK and JRE 1.3.120 and earlier, when an HTTP proxy server is used, allows remote attackers to violate the security model for an applet's outbound...

2.6CVSS5.9AI score0.07177EPSS

Exploits0References1

UbuntuCve•added 2007/07/11 10:30 p.m.•28 views

CVE-2007-3698

The Java Secure Socket Extension JSSE in Sun JDK and JRE 6 Update 1 and earlier, JDK and JRE 5.0 Updates 7 through 11, and SDK and JRE 1.4.211 through 1.4.214, when using JSSE for SSL/TLS support, allows remote attackers to cause a denial of service CPU consumption via certain SSL/TLS handshake...

7.8CVSS5.9AI score0.19037EPSS

Exploits0References1

UbuntuCve•added 2007/06/30 1:30 a.m.•30 views

CVE-2007-3503

4.3CVSS6AI score0.00874EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by