CVE-2010-4450

8 documents6 sources
Severity
3.7LOW
EPSS
0.2%
top 61.71%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
SUN JDKSUN JRESUN SDK
Timeline
PublishedFeb 17
Latest updateMay 14

Description

Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier for Solaris and Linux; 5.0 Update 27 and earlier for Solaris and Linux; and 1.4.2_29 and earlier for Solaris and Linux allows local standalone applications to affect confidentiality, integrity, and availability via unknown vectors related to Launcher. NOTE: the previous information was obtained from the February 2011 CPU. Oracle has not commented on claims from a downst

CVSS vector

AV:L/AC:H/C:P/I:P/A:PExploitability: 1.9 | Impact: 6.4

Affected Packages3 packages

NVDsun/jdk1.6.0+3
NVDsun/jre1.6.0+33
NVDsun/sdk1.4.2_29+29

Patches

Patch: www.oracle.comPatch: www.oracle.comPatch: www.oracle.com

🔴Vulnerability Details

2
GHSA
GHSA-g2rr-vj8j-6grg: Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier for Solaris and Linux;2022-05-14
CVEList
CVE-2010-4450: Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier for Solaris and Linux;2011-02-17

📋Vendor Advisories

4
Ubuntu
OpenJDK 6 vulnerabilities2011-03-17
Ubuntu
OpenJDK 6 vulnerabilities2011-03-15
Ubuntu
OpenJDK 6 vulnerabilities2011-03-01
Red Hat
OpenJDK Launcher incorrect processing of empty library path entries (6983554)2011-02-15

💬Community

1
Bugzilla
CVE-2010-4450 OpenJDK Launcher incorrect processing of empty library path entries (6983554)2011-02-08
CVE-2010-4450 (LOW CVSS 3.7) | Unspecified vulnerability in the Ja | cvebase.io