CVE-2006-6745

8 documents5 sources

Severity

9.3CRITICAL

EPSS

14.8%

top 5.50%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

SUN J2se SUN JRE

Timeline

PublishedDec 26

Latest updateMay 1

Description

Multiple unspecified vulnerabilities in Sun Java Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 7 and earlier, and Java System Development Kit (SDK) and JRE 1.4.2_12 and earlier 1.4.x versions, allow attackers to develop Java applets or applications that are able to gain privileges, related to serialization in JRE.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages2 packages

▶NVDsun/jre16 versions+15

▶NVDsun/j2se23 versions+22

Patches

Patch: securitytracker.com ↗Patch: securitytracker.com ↗

🔴Vulnerability Details

GHSA

GHSA-xhqx-5mvc-wmcf: Multiple unspecified vulnerabilities in Sun Java Development Kit (JDK) and Java Runtime Environment (JRE) 5↗2022-05-01

▶

CVEList

CVE-2006-6745: Multiple unspecified vulnerabilities in Sun Java Development Kit (JDK) and Java Runtime Environment (JRE) 5↗2006-12-26

▶

📋Vendor Advisories

Red Hat

security flaw↗2007-01-04

▶

💬Community

Bugzilla

CVE-2006-6745 security flaw↗2018-08-16

▶

Bugzilla

CVE-2006-6736 Multiple JRE flaws (CVE-2006-6737 CVE-2006-6745 CVE-2006-6731 CVE-2006-4339)↗2007-02-09

▶

Bugzilla

CVE-2006-6736 Multiple JRE flaws (CVE-2006-6737 CVE-2006-6745 CVE-2006-6731 CVE-2006-4339)↗2007-02-02

▶

Bugzilla

CVE-2006-6736 Multiple JRE flaws (CVE-2006-6737 CVE-2006-6745 CVE-2006-6731 CVE-2006-4339)↗2007-02-02

▶