RHEL 5 : java-1.4.2-ibm (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - OpenJDK: InetSocketAddress serialization issue Networking, 7201071 CVE-2013-0433 - Oracle JDK 7: bypass o...

GHSA-RWHV-HVJ2-QRQM Liferay Portal Frontend JS module's portlet.js and Liferay DXP vulnerable to Cross-site Scripting

Cross-site scripting XSS vulnerability in the Frontend JS module's portlet.js in Liferay Portal 7.2.0 through 7.4.3.37, and Liferay DXP 7.4 before update 38, 7.3 before update 11, 7.2 before fix pack 20, and older unsupported versions allows remote attackers to inject arbitrary web script or HTML...

Design/Logic Flaw

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.240 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors relat...

Design/Logic Flaw

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 through Update 11 and 6 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality via vectors related to JAX-WS. NOTE: the previous information is from the February 2013 CPU...

Design/Logic Flaw

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs...

CVE-2013-1479

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 through Update 11, 6 through Update 38, and JavaFX 2.2.4 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors...

Design/Logic Flaw

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38 allows remote attackers to affect confidentiality via vectors related to JMX...

CVE-2013-0423

The CVE-2013-0423 entry affects IBM WebSphere ILOG JRules and IBM WebSphere Operational Decision Manager via bundled Java components. The IBM bulletin confirms impact on IBM WebSphere ILOG JRules v7.1.1 (Windows with provided JDK) and IBM ODM v7.5 and v8.0 across distributed platforms. Remediatio...

CVE-2013-0419

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs...

CVE-2012-3342

CVE-2012-3342 is listed in IBM security advisories as part of a set of Java/JRE related flaws. IBM reports affected products as IBM WebSphere ILOG JRules V7.1.1 (Windows with a provided JDK) and IBM Operational Decision Manager V7.5/V8.0 (all distributed platforms). Remediation is via APAR RS0128...

CVE-2012-3213

CVE-2012-3213 is listed in connected IBM advisories alongside multiple JRE vulnerabilities. The Nessus/NASL entry confirms an unspecified vulnerability in Oracle JRE (Java SE 7u11 and 6u38) that could affect confidentiality, integrity, and availability through scripting, with remote exploitation....

CVE-2013-1473

CVE-2013-1473 is described as an unspecified vulnerability in the JRE Deployment component of Oracle Java SE 7 (up to Update 11) and Java SE 6 (up to Update 38). Connected IBM bulletins identify this CVE among a set of IBM JRE/JRules/ODM vulnerabilities and provide remediation: RS01283 with Windo...

CVE-2013-1481

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 6 through Update 38, 5.0 through Update 38, and 1.4.240 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound...

CVE-2013-0441

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.240 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors relat...