CVE-2009-2723

5 documents5 sources

Severity

10.0CRITICAL

EPSS

4.3%

top 11.07%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

SUN Java SE

Timeline

PublishedAug 10

Latest updateMay 2

Description

Unspecified vulnerability in deserialization in the Provider class in Sun Java SE 5.0 before Update 20 has unknown impact and attack vectors, aka BugId 6444262.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

▶NVDsun/java_se5.0

Patches

Patch: java.sun.com ↗Patch: sunsolve.sun.com ↗Patch: java.sun.com ↗

🔴Vulnerability Details

GHSA

GHSA-5f46-9784-q9xr: Unspecified vulnerability in deserialization in the Provider class in Sun Java SE 5↗2022-05-02

▶

CVEList

CVE-2009-2723: Unspecified vulnerability in deserialization in the Provider class in Sun Java SE 5↗2009-08-10

▶

📋Vendor Advisories

Red Hat

JDK unspecified deserialization in Provider class↗2009-08-11

▶

💬Community

Bugzilla

CVE-2009-2723 JDK unspecified deserialization in Provider class↗2009-08-11

▶