SUSE CVE-2018-2972

🗓️ 15 Feb 2023 04:33:35Reported by Suse CVEType

susecve

susecve🔗 www.suse.com👁 1 Views

Java SE 10.0.1 vulnerability allows unauthenticated remote access to data via multiple protocols.

Reporter	Title	Published	Views	Family All 58
Tenable Nessus	Oracle Java SE 6 < Update 201 / 7 < Update 191 / 8 < Update 181 / 10 < Update 2 Multiple Vulnerabilities (July 2018 CPU)	2 May 201900:00	–	nessus
Tenable Nessus	openSUSE Security Update : java-10-openjdk (openSUSE-2018-810)	7 Aug 201800:00	–	nessus
Tenable Nessus	openSUSE Security Update : java-11-openjdk (openSUSE-2018-830)	9 Aug 201800:00	–	nessus
Tenable Nessus	openSUSE Security Update : java-10-openjdk (openSUSE-2019-570)	27 Mar 201900:00	–	nessus
Tenable Nessus	openSUSE Security Update : java-11-openjdk (openSUSE-2019-575)	27 Mar 201900:00	–	nessus
Tenable Nessus	Oracle Java SE Multiple Vulnerabilities (July 2018 CPU)	20 Jul 201800:00	–	nessus
Tenable Nessus	Oracle Java SE Multiple Vulnerabilities (July 2018 CPU) (Unix)	20 Jul 201800:00	–	nessus
Tenable Nessus	Oracle JRockit R28.3.18 Multiple Vulnerabilities (July 2018 CPU)	20 Jul 201800:00	–	nessus
Tenable Nessus	Photon OS 1.0: Blktrace / Libmspack / Ntp / Openjdk / Perl / Systemd / Vim PHSA-2018-1.0-0167 (deprecated)	17 Aug 201800:00	–	nessus
Tenable Nessus	Photon OS 1.0: Openjdk PHSA-2018-1.0-0167	7 Feb 201900:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
SUSE Linux Enterprise Desktop	15	any	java-10-openjdk	10.0.2.0-3.3.3	java-10-openjdk-10.0.2.0-3.3.3.noarch.rpm
SUSE Linux Enterprise Server	15	any	java-10-openjdk	10.0.2.0-3.3.3	java-10-openjdk-10.0.2.0-3.3.3.noarch.rpm
SUSE Linux Enterprise Server	15.1	any	java-10-openjdk	10.0.2.0-3.3.3	java-10-openjdk-10.0.2.0-3.3.3.noarch.rpm
SUSE Linux Enterprise Server for SAP applications	15	any	java-10-openjdk	10.0.2.0-3.3.3	java-10-openjdk-10.0.2.0-3.3.3.noarch.rpm
SUSE Linux Enterprise Server for SAP applications	15.1	any	java-10-openjdk	10.0.2.0-3.3.3	java-10-openjdk-10.0.2.0-3.3.3.noarch.rpm
OpenSUSE Leap	15.0	any	java-10-openjdk	10.0.2.0-lp150.2.3.2	java-10-openjdk-10.0.2.0-lp150.2.3.2.noarch.rpm
OpenSUSE Leap	15.0	any	java-10-openjdk-accessibility	10.0.2.0-lp150.2.3.2	java-10-openjdk-accessibility-10.0.2.0-lp150.2.3.2.noarch.rpm
SUSE Linux Enterprise Desktop	15	any	java-10-openjdk-demo	10.0.2.0-3.3.3	java-10-openjdk-demo-10.0.2.0-3.3.3.noarch.rpm
SUSE Linux Enterprise Server	15	any	java-10-openjdk-demo	10.0.2.0-3.3.3	java-10-openjdk-demo-10.0.2.0-3.3.3.noarch.rpm
SUSE Linux Enterprise Server	15.1	any	java-10-openjdk-demo	10.0.2.0-3.3.3	java-10-openjdk-demo-10.0.2.0-3.3.3.noarch.rpm

Source	Link
suse	www.suse.com/security/cve/CVE-2018-2972
suse	www.suse.com/support/security/rating/
bugzilla	www.bugzilla.suse.com/1101655
lists	www.lists.suse.com/pipermail/sle-security-updates/2018-July/004325.html
lists	www.lists.opensuse.org/archives/list/[email protected]/thread/K6WANXMP6XOD6G3VRL7A3SDTZ3Z5FI6S/
lists	www.lists.opensuse.org/archives/list/[email protected]/thread/FFFSV6DLZNN5AEKLQ4NZ6BMF772GDED6/

27 May 2026 11:18Current

7.9High risk

Vulners AI Score7.9

CVSS 35.9

EPSS0.0064

java se unauthenticated access remote exposure multiple protocols client deployment server deployment sandboxed webstart sandboxed applets data confidentiality impact java se 10.0.1