Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2013-0425
HistoryFeb 01, 2013 - 12:00 a.m.

CVE-2013-0425

2013-02-0100:00:00
ubuntu.com
ubuntu.com
22

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.05 Low

EPSS

Percentile

92.8%

JSON

Unspecified vulnerability in the Java Runtime Environment (JRE) component
in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through
Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote
attackers to affect confidentiality, integrity, and availability via
unknown vectors related to Libraries, a different vulnerability than
CVE-2013-0428 and CVE-2013-0426. NOTE: the previous information is from
the February 2013 CPU. Oracle has not commented on claims from another
vendor that this issue is related to incorrect “access control checks” in
the logging API that allow remote attackers to bypass Java sandbox
restrictions.

OSVersionArchitecturePackageVersionFilename
ubuntu8.04noarchopenjdk-6< 6b27-1.12.3-0ubuntu1~08.04.1UNKNOWN
ubuntu10.04noarchopenjdk-6< 6b27-1.12.1-2ubuntu0.10.04.2UNKNOWN
ubuntu11.10noarchopenjdk-6< 6b27-1.12.1-2ubuntu0.11.10.2UNKNOWN
ubuntu12.04noarchopenjdk-6< 6b27-1.12.1-2ubuntu0.12.04.2UNKNOWN
ubuntu12.10noarchopenjdk-6< 6b27-1.12.1-2ubuntu0.12.10.2UNKNOWN
ubuntu11.10noarchopenjdk-7< 7u13-2.3.6-0ubuntu0.11.10.2UNKNOWN
ubuntu12.04noarchopenjdk-7< 7u13-2.3.6-0ubuntu0.12.04.1UNKNOWN
ubuntu12.10noarchopenjdk-7< 7u13-2.3.6-0ubuntu0.12.10.1UNKNOWN

Related

prion 3
ubuntucve 2
cve 3
veracode 3
nessus 48
suse 15
openvas 48
ibm 12
fedora 5
oraclelinux 3
centos 3
redhat 10
amazon 1
ubuntu 1
cert 1
securityvulns 1
gentoo 1
prion
prion
Design/Logic Flaw
2013-02-02 00:55:00
Design/Logic Flaw
2013-02-02 00:55:00
Design/Logic Flaw
2013-02-02 00:55:00
ubuntucve
ubuntucve
CVE-2013-0426
2013-02-01 00:00:00
CVE-2013-0428
2013-02-01 00:00:00
cve
cve
CVE-2013-0428
2013-02-02 00:55:00
CVE-2013-0426
2013-02-02 00:55:00
CVE-2013-0425
2013-02-02 00:55:00
veracode
veracode
Sandbox Restrictions Bypass
2019-05-02 04:52:31
Sandbox Restrictions Bypass
2019-05-02 04:52:31
Sandbox Restrictions Bypass
2019-05-02 04:52:31
nessus
nessus
SuSE 10 Security Update : Java (ZYPP Patch Number 8481)
2013-03-14 00:00:00
SuSE 11.2 Security Update : Java (SAT Patch Number 7450)
2013-03-14 00:00:00
openSUSE Security Update : java-1_6_0-openjdk (openSUSE-SU-2013:0308-1)
2014-06-13 00:00:00
suse
suse
Security update for Java (important)
2013-03-14 23:04:46
Security update for Java (important)
2013-03-13 18:04:30
Security update for IBM Java2 JRE and SDK (important)
2013-03-18 22:04:28
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2013:0440-2)
2021-06-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2013:0440-3)
2021-06-09 00:00:00
openSUSE: Security Advisory for java-1_6_0-openjdk (openSUSE-SU-2013:0308-1)
2013-03-11 00:00:00
ibm
ibm
Security Bulletin: Multiple vulnerabilities in IBM Rational Build Forge (CVE-2012-3213, CVE-2013-0419, CVE-2013-0423, CVE-2013-0424, CVE-2013-0425, CVE-2013-0426, CVE-2013-0427, CVE-2013-0428, CVE-2013-0433, CVE-2013-0434, CVE-2013-0435, CVE-2013-0437, C
2018-06-17 04:45:23
Security Bulletin: Rational Functional Tester 8.x vulnerabilities due to security vulnerabilities in IBM JRE 7 SR3 or earlier, and non-IBM Java 7 (CVE-2013-0809, CVE-2013-1493, CVE-2013-0437, CVE-2012-1541, CVE-2013-0446, CVE-2012-3342, CVE-2013-0428)
2019-05-07 13:26:07
IBM WebSphere Cast Iron Security Bulletin: Multiple security vulnerabilities in IBM JRE 6
2018-06-15 06:56:07
fedora
fedora
[SECURITY] Fedora 18 Update: java-1.7.0-openjdk-1.7.0.9-2.3.5.3.fc18
2013-02-09 11:29:39
[SECURITY] Fedora 17 Update: java-1.7.0-openjdk-1.7.0.9-2.3.5.3.fc17
2013-02-09 11:30:33
[SECURITY] Fedora 16 Update: java-1.6.0-openjdk-1.6.0.0-71.1.11.6.fc16
2013-02-09 11:28:38
oraclelinux
oraclelinux
java-1.6.0-openjdk security update
2013-02-08 00:00:00
java-1.6.0-openjdk security update
2013-02-08 00:00:00
java-1.7.0-openjdk security update
2013-02-08 00:00:00
centos
centos
java security update
2013-02-08 22:39:51
java security update
2013-02-09 11:03:54
java security update
2013-02-09 00:57:50
redhat
redhat
(RHSA-2013:0247) Important: java-1.7.0-openjdk security update
2013-02-08 00:00:00
(RHSA-2013:0624) Critical: java-1.5.0-ibm security update
2013-03-11 00:00:00
(RHSA-2013:0245) Critical: java-1.6.0-openjdk security update
2013-02-08 00:00:00
amazon
amazon
Important: java-1.7.0-openjdk
2013-02-17 15:35:00
ubuntu
ubuntu
OpenJDK vulnerabilities
2013-02-14 00:00:00
cert
cert
Oracle Java contains multiple vulnerabilities
2013-02-01 00:00:00
securityvulns
securityvulns
Oracle Java multiple security vulnerabilities
2013-03-19 00:00:00
gentoo
gentoo
IcedTea JDK: Multiple vulnerabilities
2014-06-29 00:00:00

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.05 Low

EPSS

Percentile

92.8%

JSON
Related for UB:CVE-2013-0425
prion3ubuntucve2cve3veracode3nessus48suse15openvas48ibm12fedora5oraclelinux3centos3redhat10amazon1ubuntu1cert1securityvulns1gentoo1