CVE-2011-3549 — JDK vulnerability

5 documents5 sources
Severity
10.0CRITICALNVD
EPSS
2.8%
top 13.89%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
SUN JDKSUN JRE
Timeline
PublishedOct 19
Latest updateMay 14

Description

Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 6 Update 27 and earlier, 5.0 Update 31 and earlier, and 1.4.2_33 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Swing.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages2 packages

â–¶NVDsun/jdk1.6.0+37
â–¶NVDsun/jre1.6.0+37

🔴Vulnerability Details

2
GHSA
GHSA-h362-59hf-w6m2: Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 6 Update 27 and earlier, 5↗2022-05-14
â–¶
CVEList
CVE-2011-3549: Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 6 Update 27 and earlier, 5↗2011-10-19
â–¶

📋Vendor Advisories

1
Red Hat
JDK: unspecified vulnerability fixed in 6u29 (Swing)↗2011-10-18
â–¶

💬Community

1
Bugzilla
CVE-2011-3549 Oracle/IBM JDK: unspecified vulnerability fixed in 6u29 (Swing)↗2011-10-19
â–¶
CVE-2011-3549 — SUN JDK vulnerability | cvebase