CVE-2012-3216Oracle JDK vulnerability

6 documents6 sources
Severity
2.6LOWNVD
EPSS
2.4%
top 14.95%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
Oracle JDKOracle JRESUN JDK+1 more
Timeline
PublishedOct 16
Latest updateMay 14

Description

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, 5.0 Update 36 and earlier, and 1.4.2_38 and earlier allows remote attackers to affect confidentiality via unknown vectors related to Libraries.

CVSS vector

AV:N/AC:H/C:P/I:N/A:NExploitability: 4.9 | Impact: 2.9

Affected Packages4 packages

NVDoracle/jdk1.7.0+5
NVDoracle/jre1.7.0+5
NVDsun/jdk39 versions+38
NVDsun/jre39 versions+38

Patches

Patch: www.oracle.comPatch: www.oracle.com

🔴Vulnerability Details

2
GHSA
GHSA-8p49-c7qf-43vm: Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, 52022-05-14
CVEList
CVE-2012-3216: Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, 52012-10-16

📋Vendor Advisories

2
Ubuntu
OpenJDK vulnerabilities2012-10-26
Red Hat
OpenJDK: java.io.FilePermission information leak (Libraries, 6631398)2012-10-16

💬Community

1
Bugzilla
CVE-2012-3216 OpenJDK: java.io.FilePermission information leak (Libraries, 6631398)2012-10-11
CVE-2012-3216 — Oracle JDK vulnerability | cvebase