CVE-2010-4475

7 documents6 sources
Severity
4.3MEDIUM
EPSS
2.8%
top 13.99%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
SUN JDKSUN JRESUN SDK
Timeline
PublishedFeb 17
Latest updateMay 14

Description

Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to Deployment, a different vulnerability than CVE-2010-4447.

CVSS vector

AV:N/AC:M/C:P/I:N/A:NExploitability: 8.6 | Impact: 2.9

Affected Packages3 packages

NVDsun/jdk1.6.0+3
NVDsun/jre1.6.0+33
NVDsun/sdk1.4.2_29+29

Patches

Patch: www.oracle.comPatch: www.oracle.com

🔴Vulnerability Details

2
GHSA
GHSA-6p4c-6mx2-r9cv: Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 52022-05-14
CVEList
CVE-2010-4475: Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 52011-02-17

💥Exploits & PoCs

1
Exploit-DB
SAP AG SAPgui EAI WebViewer3D - Remote Buffer Overflow (Metasploit)2010-05-09

📋Vendor Advisories

2
Red Hat
JDK unspecified vulnerability in Deployment component2011-02-15
Red Hat
JDK unspecified vulnerability in Deployment component2011-02-15

💬Community

1
Bugzilla
CVE-2010-4475 JDK unspecified vulnerability in Deployment component2011-02-16
CVE-2010-4475 (MEDIUM CVSS 4.3) | Unspecified vulnerability in the Ja | cvebase.io