7.1 High
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
NONE
AV:N/AC:H/Au:N/C:C/I:C/A:N
0.005 Low
EPSS
Percentile
76.9%
Java Web Start in Sun JDK and JRE 6 Update 2 and earlier does not properly
enforce access restrictions for untrusted applications, which allows
user-assisted remote attackers to read and modify local files via an
untrusted application, aka “two vulnerabilities.”