CVE-2010-0837JDK vulnerability

7 documents6 sources
Severity
7.5HIGHNVD
EPSS
3.6%
top 12.21%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
SUN JDKSUN JRE
Timeline
PublishedApr 1
Latest updateMay 2

Description

Unspecified vulnerability in the Pack200 component in Oracle Java SE and Java for Business 6 Update 18, 5.0, Update, and 23 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages2 packages

NVDsun/jdk1.6.0+3
NVDsun/jre1.6.0+3

🔴Vulnerability Details

2
GHSA
GHSA-ch7p-82hg-j456: Unspecified vulnerability in the Pack200 component in Oracle Java SE and Java for Business 6 Update 18, 52022-05-02
CVEList
CVE-2010-0837: Unspecified vulnerability in the Pack200 component in Oracle Java SE and Java for Business 6 Update 18, 52010-04-01

📋Vendor Advisories

2
Ubuntu
OpenJDK vulnerabilities2010-04-07
Red Hat
OpenJDK JAR "unpack200" must verify input parameters (6902299)2010-03-30

💬Community

2
Bugzilla
CVE-2010-3869 Certificate System: SCEP one-time PIN reuse2010-11-02
Bugzilla
CVE-2010-0837 OpenJDK JAR "unpack200" must verify input parameters (6902299)2010-03-22
CVE-2010-0837 — SUN JDK vulnerability | cvebase