Information Disclosure

2020-04-1001:03:13

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

JSON

java is vulnerable to information disclosure. The vulnerability exists as a flaw was found in the Java HotSpot virtual machine. An untrusted Java application or applet could use this flaw to disclose portions of the VM memory, or cause it to crash.

CPENameOperatorVersion
java-1.6.0-openjdkeq1.6.0.0__1.20.b17.el5
java-1.6.0-openjdkeq1.6.0.0__1.31.b17.el6_0
java-1.6.0-openjdkeq1.6.0.0__1.36.b17.el6_0
java-1.6.0-openjdkeq1.6.0.0__0.25.b09.el5
java-1.6.0-openjdkeq1.6.0.0__1.2.b09.el5
java-1.6.0-openjdkeq1.6.0.0__1.17.b17.el5
java-1.6.0-openjdkeq1.6.0.0__1.21.b17.el6
java-1.6.0-openjdkeq1.6.0.0__1.7.b09.el5
java-1.6.0-openjdkeq1.6.0.0__0.30.b09.el5
java-1.6.0-openjdkeq1.6.0.0__1.39.1.9.8.el6_1

Name	Operator	Version
java-1.6.0-openjdk	eq	1.6.0.0__1.20.b17.el5
java-1.6.0-openjdk	eq	1.6.0.0__1.31.b17.el6_0
java-1.6.0-openjdk	eq	1.6.0.0__1.36.b17.el6_0
java-1.6.0-openjdk	eq	1.6.0.0__0.25.b09.el5
java-1.6.0-openjdk	eq	1.6.0.0__1.2.b09.el5
java-1.6.0-openjdk	eq	1.6.0.0__1.17.b17.el5
java-1.6.0-openjdk	eq	1.6.0.0__1.21.b17.el6
java-1.6.0-openjdk	eq	1.6.0.0__1.7.b09.el5
java-1.6.0-openjdk	eq	1.6.0.0__0.30.b09.el5
java-1.6.0-openjdk	eq	1.6.0.0__1.39.1.9.8.el6_1