CVE-2012-1543 — Oracle Javafx vulnerability

5 documents4 sources

Severity

7.6HIGHNVD

EPSS

1.4%

top 19.35%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Oracle Javafx

Timeline

PublishedFeb 2

Latest updateMay 17

Description

Unspecified vulnerability in the JavaFX component in Oracle Java SE JavaFX 2.2.4 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than other CVEs listed in the February 2013 CPU. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from a third party that the issue is due to an invalid type cast in the JSObject class.

CVSS vector

AV:N/AC:H/C:C/I:C/A:CExploitability: 4.9 | Impact: 10.0

Affected Packages1 packages

▶NVDoracle/javafx2.2.4+6

🔴Vulnerability Details

GHSA

GHSA-f79f-25vc-qcr9: Unspecified vulnerability in the JavaFX component in Oracle Java SE JavaFX 2↗2022-05-17

▶

CVEList

CVE-2012-1543: Unspecified vulnerability in the JavaFX component in Oracle Java SE JavaFX 2↗2013-02-02

▶

💬Community

Bugzilla

CVE-2012-5603 CloudForms Katello: lack of authorization in proxies_controller.rb↗2012-11-30

▶

Bugzilla

CVE-2012-5605 CloudForms grinder: /var/lib/pulp/cache/grinder directory is world-writeable↗2012-11-30

▶