6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.036 Low
EPSS
Percentile
91.5%
Multiple unspecified vulnerabilities in Sun Java Runtime Environment (JRE)
in JDK and JRE 6 before Update 7, JDK and JRE 5.0 before Update 16, SDK and
JRE 1.4.x before 1.4.2_18, and SDK and JRE 1.3.x before 1.3.1_23 allow
remote attackers to violate the security model for an applet’s outbound
connections by connecting to localhost services running on the machine that
loaded the applet.