CVE-2011-3554JDK vulnerability

6 documents6 sources
Severity
10.0CRITICALNVD
EPSS
2.7%
top 14.06%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
SUN JDKSUN JRE
Timeline
PublishedOct 19
Latest updateMay 14

Description

Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages2 packages

NVDsun/jdk1.6.0+4
NVDsun/jre1.6.0+4

🔴Vulnerability Details

2
GHSA
GHSA-vx55-8v47-79g6: Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 52022-05-14
CVEList
CVE-2011-3554: Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 52011-10-19

📋Vendor Advisories

2
Ubuntu
IcedTea-Web, OpenJDK 6 vulnerabilities2011-11-16
Red Hat
OpenJDK: insufficient pack200 JAR files uncompress error checks (Runtime, 7057857)2011-10-18

💬Community

1
Bugzilla
CVE-2011-3554 OpenJDK: insufficient pack200 JAR files uncompress error checks (Runtime, 7057857)2011-10-12
CVE-2011-3554 — SUN JDK vulnerability | cvebase