Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:14855
HistoryMay 02, 2019 - 4:56 a.m.

Arbitrary Code Execution

2019-05-0204:56:13
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

JSON

java is vulnerable to arbitrary code execution. The vulnerability exists as MethodHandles in HotSpot JVM does not properly handle methods.

References

Related

prion 1
cve 1
checkpoint_advisories 1
ubuntucve 1
openvas 17
oraclelinux 2
nessus 21
centos 2
redhat 3
mageia 1
amazon 1
kaspersky 1
f5 2
ubuntu 1
securityvulns 1
oracle 1
gentoo 1
prion
prion
Design/Logic Flaw
2014-01-15 16:08:00
cve
cve
CVE-2013-5893
2014-01-15 16:08:00
checkpoint_advisories
checkpoint_advisories
Oracle Java Private MethodHandle Sandbox Bypass (CVE-2013-5893)
2014-02-03 00:00:00
ubuntucve
ubuntucve
CVE-2013-5893
2014-01-15 00:00:00
openvas
openvas
Oracle Java SE Multiple Unspecified Vulnerabilities-01 (Jan 2014) - Windows
2014-01-22 00:00:00
Oracle Java SE Multiple Unspecified Vulnerabilities-01 (Jan 2014) - Linux
2014-01-22 00:00:00
CentOS Update for java CESA-2014:0026 centos6
2014-01-21 00:00:00
oraclelinux
oraclelinux
java-1.7.0-openjdk security update
2014-01-14 00:00:00
java-1.7.0-openjdk security update
2014-01-14 00:00:00
nessus
nessus
SuSE 11.3 Security Update : openjdk (SAT Patch Number 8874)
2014-02-11 00:00:00
Scientific Linux Security Update : java-1.7.0-openjdk on SL6.x i386/x86_64 (20140115)
2014-01-16 00:00:00
Scientific Linux Security Update : java-1.7.0-openjdk on SL5.x i386/x86_64 (20140115)
2014-01-16 00:00:00
centos
centos
java security update
2014-01-15 11:04:23
java security update
2014-01-15 11:16:34
redhat
redhat
(RHSA-2014:0026) Critical: java-1.7.0-openjdk security update
2014-01-15 00:00:00
(RHSA-2014:0027) Important: java-1.7.0-openjdk security update
2014-01-15 00:00:00
(RHSA-2014:0030) Critical: java-1.7.0-oracle security update
2014-01-15 00:00:00
mageia
mageia
Updated java-1.7.0-openjdk package fixes multiple security vulnerabilities
2014-01-21 20:22:18
amazon
amazon
Critical: java-1.7.0-openjdk
2014-01-15 10:28:00
kaspersky
kaspersky
KLA10511 Multiple vulnerabilities in Oracle products
2014-01-15 00:00:00
f5
f5
K53146535 : Multiple Sun Java vulnerabilities
2015-12-31 00:00:00
SOL53146535 - Multiple Sun Java vulnerabilities
2015-12-30 00:00:00
ubuntu
ubuntu
OpenJDK 7 vulnerabilities
2014-01-23 00:00:00
securityvulns
securityvulns
Oracle / Sun / MySQL / PeopleSoft / OpenJDK applications multiple security vulnerabilities
2014-05-05 00:00:00
oracle
oracle
Oracle Critical Patch Update - January 2014
2014-01-14 00:00:00
gentoo
gentoo
Oracle JRE/JDK: Multiple vulnerabilities
2014-01-27 00:00:00

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

JSON
Related for VERACODE:14855
prion1cve1checkpoint_advisories1ubuntucve1openvas17oraclelinux2nessus21centos2redhat3mageia1amazon1kaspersky1f52ubuntu1securityvulns1oracle1gentoo1