CVE-2012-4305Oracle Javafx vulnerability

3 documents3 sources
Severity
9.3CRITICALNVD
EPSS
5.0%
top 10.22%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Oracle Javafx
Timeline
PublishedFeb 2
Latest updateMay 17

Description

Unspecified vulnerability in the JavaFX component in Oracle Java SE JavaFX 2.2.4 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than other CVEs listed in the February 2013 CPU. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from a third party that the issue allows remote attackers to execute arbitrary code via vectors related to an "invalid type cast" and e

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages1 packages

NVDoracle/javafx2.2.4+6

🔴Vulnerability Details

2
GHSA
GHSA-pcmm-fv37-g9f8: Unspecified vulnerability in the JavaFX component in Oracle Java SE JavaFX 22022-05-17
CVEList
CVE-2012-4305: Unspecified vulnerability in the JavaFX component in Oracle Java SE JavaFX 22013-02-02
CVE-2012-4305 — Oracle Javafx vulnerability | cvebase