Jre Security Vulnerabilities and Issues — Jre CVE List

Lucene search

OracleJre

59 matches found

CVE•added 2012/08/28 12:55 a.m.•1237 views

CVE-2012-4681

Multiple vulnerabilities in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 6 and earlier allow remote attackers to execute arbitrary code via a crafted applet that bypasses SecurityManager restrictions by (1) using com.sun.beans.finder.ClassFinder.findClass and leveraging a...

10CVSS7.6AI score0.9414EPSS

CVE•added 2012/06/07 10:55 p.m.•1181 views

CVE-2012-0507

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, and 5.0 Update 33 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Concurrency. NOTE:...

10CVSS9AI score0.93725EPSS

CVE•added 2012/06/16 9:55 p.m.•1149 views

CVE-2012-1723

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.2_37 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related t...

10CVSS8.4AI score0.94083EPSS

CVE•added 2012/10/16 9:55 p.m.•1085 views

CVE-2012-5076

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier allows remote attackers to affect confidentiality, integrity, and availability, related to JAX-WS.

10CVSS8.4AI score0.92498EPSS

CVE•added 2012/05/03 6:55 p.m.•403 views

CVE-2012-0551

Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE 7 update 4 and earlier and 6 update 32 and earlier, and the GlassFish Enterprise Server component in Oracle Sun Products Suite GlassFish Enterprise Server 3.1.1, allows remote attackers to affect confidentiality and i...

5.8CVSS5.3AI score0.51827EPSS

CVE•added 2012/10/16 9:55 p.m.•340 views

CVE-2012-1533

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, and 6 Update 35 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than C...

10CVSS5.6AI score0.66165EPSS

CVE•added 2012/10/16 9:55 p.m.•282 views

CVE-2012-5081

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, 5.0 Update 36 and earlier, and 1.4.2_38 and earlier allows remote attackers to affect availability, related to JSSE.

5CVSS7AI score0.8112EPSS

CVE•added 2012/06/16 9:55 p.m.•279 views

CVE-2012-1713

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, 1.4.2_37 and earlier, and JavaFX 2.1 and earlier allows remote attackers to affect confidentiality, integrity, and availability via u...

10CVSS8.2AI score0.0768EPSS

CVE•added 2012/06/16 9:55 p.m.•276 views

CVE-2012-1718

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.2_37 and earlier allows remote attackers to affect availability via unknown vectors related to Security.

5CVSS8.2AI score0.05982EPSS

CVE•added 2012/08/30 11:55 p.m.•274 views

CVE-2012-1682

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 6 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Beans, a different vulnerability than CVE-2012-3136. NOTE: Oracle has not ...

10CVSS5.8AI score0.02927EPSS

CVE•added 2012/10/16 9:55 p.m.•274 views

CVE-2012-3216

2.6CVSS8AI score0.0207EPSS

CVE•added 2012/08/30 11:55 p.m.•272 views

CVE-2012-0547

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 6 and earlier, and 6 Update 34 and earlier, has no impact and remote attack vectors involving AWT and "a security-in-depth issue that is not directly exploitable but which can be used to aggravate s...

8.8AI score0.10761EPSS

CVE•added 2012/06/16 9:55 p.m.•266 views

CVE-2012-1716

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, and 5 update 35 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Swing.

10CVSS8.2AI score0.0494EPSS

CVE•added 2012/06/16 9:55 p.m.•265 views

CVE-2012-1719

5CVSS8.5AI score0.02144EPSS

CVE•added 2012/06/16 9:55 p.m.•265 views

CVE-2012-1725

10CVSS8.2AI score0.0494EPSS

CVE•added 2012/10/16 9:55 p.m.•263 views

CVE-2012-5073

5CVSS8.3AI score0.02398EPSS

CVE•added 2012/06/16 9:55 p.m.•259 views

CVE-2012-1722

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, and 6 update 32 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than C...

10CVSS5.6AI score0.03008EPSS

CVE•added 2012/10/16 9:55 p.m.•257 views

CVE-2012-5084

7.6CVSS8.2AI score0.07984EPSS

CVE•added 2012/10/16 9:55 p.m.•255 views

CVE-2012-5089

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, and 5.0 Update 36 and earlier allows remote attackers to affect confidentiality, integrity, and availability, related to JMX, a different vulnerability than C...

7.6CVSS8.6AI score0.12617EPSS

CVE•added 2012/08/30 11:55 p.m.•254 views

CVE-2012-3136

10CVSS5.7AI score0.02927EPSS

CVE•added 2012/10/16 9:55 p.m.•254 views

CVE-2012-3143

10CVSS6AI score0.12617EPSS

CVE•added 2012/10/16 9:55 p.m.•253 views

CVE-2012-5068

7.5CVSS8.2AI score0.05181EPSS

CVE•added 2012/10/16 9:55 p.m.•253 views

CVE-2012-5069

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, and 5.0 Update 36 and earlier allows remote attackers to affect confidentiality and integrity via unknown vectors related to Concurrency.

5.8CVSS7.9AI score0.02398EPSS

CVE•added 2012/10/16 9:55 p.m.•253 views

CVE-2012-5079

5CVSS5.8AI score0.02398EPSS

CVE•added 2012/06/16 9:55 p.m.•252 views

CVE-2012-1721

10CVSS5.6AI score0.03008EPSS

CVE•added 2012/10/16 9:55 p.m.•252 views

CVE-2012-5072

5CVSS8AI score0.0207EPSS

CVE•added 2012/10/16 9:55 p.m.•252 views

CVE-2012-5088

10CVSS5.5AI score0.79264EPSS

CVE•added 2012/10/16 9:55 p.m.•251 views

CVE-2012-5071

6.4CVSS8.4AI score0.02398EPSS

CVE•added 2012/10/16 9:55 p.m.•250 views

CVE-2012-1531

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, 5.0 Update 36 and earlier, and 1.4.2_38 and earlier; and JavaFX 2.2 and earlier; allows remote attackers to affect confidentiality, integrity, and availabilit...

10CVSS5.5AI score0.12617EPSS

CVE•added 2012/10/16 9:55 p.m.•250 views

CVE-2012-5083

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, 5.0 Update 36 and earlier, 1.4.2_38 and earlier, and JavaFX 2.2 and earlier allows remote attackers to affect confidentiality, integrity, and availability via...

10CVSS5.5AI score0.09279EPSS

CVE•added 2012/10/16 9:55 p.m.•249 views

CVE-2012-3159

7.5CVSS5.6AI score0.66165EPSS

CVE•added 2012/10/16 9:55 p.m.•248 views

CVE-2012-1532

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier and 6 Update 35 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.

10CVSS5.5AI score0.10008EPSS

CVE•added 2012/10/16 9:55 p.m.•246 views

CVE-2012-5067

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier allows remote attackers to affect confidentiality via unknown vectors related to Deployment.

5CVSS5.5AI score0.56361EPSS

CVE•added 2012/10/16 9:55 p.m.•246 views

CVE-2012-5087

10CVSS8AI score0.06219EPSS

CVE•added 2012/10/16 9:55 p.m.•245 views

CVE-2012-5070

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier allows remote attackers to affect confidentiality, related to JMX.

5CVSS8.3AI score0.01399EPSS

CVE•added 2012/10/16 9:55 p.m.•244 views

CVE-2012-5075

5CVSS8.5AI score0.0207EPSS

CVE•added 2012/06/16 9:55 p.m.•243 views

CVE-2012-1726

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier allows remote attackers to affect confidentiality and integrity via unknown vectors related to Libraries.

6.4CVSS7.8AI score0.00361EPSS

CVE•added 2012/10/16 9:55 p.m.•243 views

CVE-2012-5085

8AI score0.00234EPSS

CVE•added 2012/11/28 1:3 p.m.•240 views

CVE-2012-2739

Oracle Java SE before 7 Update 6, and OpenJDK 7 before 7u6 build 12 and 8 before build 39, computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted input to an app...

5CVSS8.3AI score0.01045EPSS

CVE•added 2012/02/15 10:55 p.m.•238 views

CVE-2012-0504

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, and 6 Update 30 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Install and the Java Update mechanism.

9.3CVSS5.6AI score0.01375EPSS

CVE•added 2012/10/16 9:55 p.m.•238 views

CVE-2012-5074

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier allows remote attackers to affect confidentiality and integrity, related to JAX-WS.

6.4CVSS8.2AI score0.01623EPSS

CVE•added 2012/10/16 9:55 p.m.•236 views

CVE-2012-4416

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, and 6 Update 35 and earlier, allows remote attackers to affect confidentiality and integrity via unknown vectors related to Hotspot.

6.4CVSS7.8AI score0.03001EPSS

CVE•added 2012/10/16 9:55 p.m.•236 views

CVE-2012-5077

2.6CVSS7.9AI score0.0207EPSS

CVE•added 2012/10/16 9:55 p.m.•233 views

CVE-2012-5086

10CVSS8.1AI score0.07287EPSS

CVE•added 2012/06/16 9:55 p.m.•231 views

CVE-2012-1711

7.5CVSS8.4AI score0.00752EPSS

CVE•added 2012/06/16 9:55 p.m.•229 views

CVE-2012-1724

5CVSS8.4AI score0.02527EPSS

CVE•added 2012/11/28 1:3 p.m.•229 views

CVE-2012-5373

Oracle Java SE 7 and earlier, and OpenJDK 7 and earlier, computes hash values without properly restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted input to an application that maintains a...

5CVSS8.2AI score0.01045EPSS

CVE•added 2012/06/16 9:55 p.m.•224 views

CVE-2012-1720

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.2_37 and earlier, when running on Solaris, allows local users to affect confidentiality, integrity, and availability via unkn...

3.7CVSS5.3AI score0.00061EPSS

CVE•added 2012/02/15 10:55 p.m.•220 views

CVE-2012-0499

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, 5.0 Update 33 and earlier, and 1.4.2_35 and earlier; and JavaFX 2.0.2 and earlier; allows remote attackers to affect confidentiality, integrity, and availabil...

10CVSS5.5AI score0.10203EPSS

CVE•added 2012/02/15 10:55 p.m.•192 views

CVE-2012-0501

5CVSS8.4AI score0.05982EPSS

Total number of security vulnerabilities59