CVE-2012-0497 — Oracle JRE vulnerability

7 documents6 sources
Severity
10.0CRITICALNVD
EPSS
4.8%
top 10.46%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Oracle JRESUN JRE
Timeline
PublishedFeb 15
Latest updateMay 4

Description

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, and 6 Update 30 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages2 packages

â–¶NVDoracle/jre1.6.0+3
â–¶NVDsun/jre1.6.0

🔴Vulnerability Details

2
GHSA
GHSA-x8rc-48fv-g2g8: Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, and 6 Update 30 and earlier, allow↗2022-05-04
â–¶
CVEList
CVE-2012-0497: Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, and 6 Update 30 and earlier, allow↗2012-02-15
â–¶

📋Vendor Advisories

3
Ubuntu
OpenJDK 6 (ARM) vulnerabilities↗2012-03-01
â–¶
Ubuntu
OpenJDK 6 vulnerabilities↗2012-02-24
â–¶
Red Hat
OpenJDK: insufficient checking of the graphics rendering object (2D, 7112642)↗2012-02-14
â–¶

💬Community

1
Bugzilla
CVE-2012-0497 OpenJDK: insufficient checking of the graphics rendering object (2D, 7112642)↗2012-02-10
â–¶
CVE-2012-0497 — Oracle JRE vulnerability | cvebase