Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:14357
HistoryMay 02, 2019 - 4:46 a.m.

Arbitrary Code Execution

2019-05-0204:46:33
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
9

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

JSON

IBM Java SE version 6 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update fixes several vulnerabilities in the IBM Java Runtime Environment and the IBM Java Software Development Kit. Detailed vulnerability descriptions are linked from the IBM Security alerts page, listed in the References section. (CVE-2013-1500, CVE-2013-1571, CVE-2013-2407, CVE-2013-2412, CVE-2013-2437, CVE-2013-2442, CVE-2013-2443, CVE-2013-2444, CVE-2013-2446, CVE-2013-2447, CVE-2013-2448, CVE-2013-2450, CVE-2013-2451, CVE-2013-2452, CVE-2013-2453, CVE-2013-2454, CVE-2013-2455, CVE-2013-2456, CVE-2013-2457, CVE-2013-2459, CVE-2013-2463, CVE-2013-2464, CVE-2013-2465, CVE-2013-2466, CVE-2013-2468, CVE-2013-2469, CVE-2013-2470, CVE-2013-2471, CVE-2013-2472, CVE-2013-2473, CVE-2013-3743) Red Hat would like to thank Tim Brown for reporting CVE-2013-1500, and US-CERT for reporting CVE-2013-1571. US-CERT acknowledges Oracle as the original reporter of CVE-2013-1571. All users of java-1.6.0-ibm are advised to upgrade to these updated packages, containing the IBM Java SE 6 SR14 release. All running instances of IBM Java must be restarted for the update to take effect.

References

Related

veracode 11
nessus 47
openvas 46
mageia 2
amazon 2
suse 13
redhat 9
oraclelinux 3
centos 3
debian 2
ubuntu 3
ibm 17
securityvulns 1
prion 10
cve 11
attackerkb 1
ubuntucve 13
threatpost 1
thn 2
zdi 1
saint 1
veracode
veracode
Privilege Escalation
2019-05-02 04:46:31
Information Disclosure
2019-05-02 04:46:29
Privilege Escalation
2019-05-02 04:46:29
nessus
nessus
VMware Security Updates for vCenter Server (VMSA-2013-0012)
2013-10-25 00:00:00
Mac OS X : Java for OS X 2013-004
2013-06-19 00:00:00
Mac OS X : Java for Mac OS X 10.6 Update 16
2013-06-19 00:00:00
openvas
openvas
CentOS Update for java CESA-2013:1014 centos5
2013-07-05 00:00:00
RedHat Update for java-1.6.0-openjdk RHSA-2013:1014-01
2013-07-05 00:00:00
Oracle: Security Advisory (ELSA-2013-1014)
2015-10-06 00:00:00
mageia
mageia
Updated java-1.6.0-openjdk packages fix security vulnerabilities
2013-07-16 11:26:07
Updated java-1.7.0-openjdk packages fix multiple security vulnerabilities
2013-06-26 22:13:26
amazon
amazon
Important: java-1.6.0-openjdk
2013-07-12 15:31:00
Important: java-1.7.0-openjdk
2013-06-20 14:14:00
suse
suse
Security update for java-1_6_0-openjdk (important)
2013-07-23 22:04:14
Security update for java-1_6_0-ibm (important)
2013-07-27 17:04:18
Security update for IBM Java 1.6.0 (important)
2013-08-06 23:04:12
redhat
redhat
(RHSA-2013:1059) Critical: java-1.6.0-ibm security update
2013-07-15 00:00:00
(RHSA-2013:1014) Important: java-1.6.0-openjdk security update
2013-07-03 00:00:00
(RHSA-2013:1081) Important: java-1.5.0-ibm security update
2013-07-16 00:00:00
oraclelinux
oraclelinux
java-1.6.0-openjdk security update
2013-07-03 00:00:00
java-1.7.0-openjdk security update
2013-06-19 00:00:00
java-1.7.0-openjdk security update
2013-06-19 00:00:00
centos
centos
java security update
2013-07-04 10:07:44
java security update
2013-06-20 06:43:01
java security update
2013-06-20 06:46:44
debian
debian
[SECURITY] [DSA 2727-1] openjdk-6 security update
2013-07-25 21:11:57
[SECURITY] [DSA 2722-1] openjdk-7 security update
2013-07-15 15:52:23
ubuntu
ubuntu
OpenJDK 6 vulnerabilities
2013-07-23 00:00:00
IcedTea Web update
2013-07-16 00:00:00
OpenJDK 7 vulnerabilities
2013-07-16 00:00:00
ibm
ibm
Security Bulletin: CICS Transaction Gateway for Multiplatforms
2022-09-25 22:39:39
Security Bulletin: Potential security vulnerabilities with JavaTM SDKs
2022-09-25 21:06:56
Security Bulletin: WebSphere Application Server - Oracle CPU shipped with Rational Application Developer for WebSphere Software June 2013 (CVE-2013-1571)
2020-02-05 00:09:48
securityvulns
securityvulns
Oracle Java multiple security vulnerabilities
2013-08-28 00:00:00
prion
prion
Design/Logic Flaw
2013-06-18 22:55:00
Design/Logic Flaw
2013-06-18 22:55:00
Design/Logic Flaw
2013-06-18 22:55:00
cve
cve
CVE-2013-2464
2013-06-18 22:55:00
CVE-2013-2466
2013-06-18 22:55:00
CVE-2013-2442
2013-06-18 22:55:00
attackerkb
attackerkb
CVE-2013-2464
2013-06-18 00:00:00
ubuntucve
ubuntucve
CVE-2013-2464
2013-06-18 00:00:00
CVE-2013-2468
2013-06-18 00:00:00
CVE-2013-2466
2013-06-18 00:00:00
threatpost
threatpost
Many Flash, Java Users Running Older, Vulnerable Versions
2013-09-06 07:40:52
thn
thn
New Mac OS Malware exploited two known Java vulnerabilities
2013-09-24 04:15:00
New Mac OS Malware exploited two known Java vulnerabilities
2013-09-24 15:15:00
zdi
zdi
Oracle Java Sequencer Security Manager Bypass Remote Code Execution Vulnerability
2013-06-27 00:00:00
saint
saint
Oracle Java java.awt.image.ByteComponentRaster Overflow
2013-10-24 00:00:00

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

JSON
Related for VERACODE:14357
veracode11nessus47openvas46mageia2amazon2suse13redhat9oraclelinux3centos3debian2ubuntu3ibm17securityvulns1prion10cve11attackerkb1ubuntucve13threatpost1thn2zdi1saint1