CVE-2013-0429Oracle JDK vulnerability

4 documents4 sources
Severity
7.6HIGHNVD
EPSS
0.8%
top 25.89%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
Oracle JDKOracle JRESUN JDK+1 more
Timeline
PublishedFeb 2
Latest updateMay 5

Description

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue involves the creation of a single PresentationManager that is shared across

CVSS vector

AV:N/AC:H/C:C/I:C/A:CExploitability: 4.9 | Impact: 10.0

Affected Packages4 packages

NVDoracle/jdk1.5.0, 1.6.0, 1.7.0+2
NVDoracle/jre1.5.0, 1.6.0, 1.7.0+2
NVDsun/jdk1.5.0, 1.6.0+1
NVDsun/jre1.5.0, 1.6.0+1

🔴Vulnerability Details

2
GHSA
GHSA-pr3m-j4vm-4x8c: Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 52022-05-05
CVEList
CVE-2013-0429: Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 52013-02-02

📋Vendor Advisories

1
Ubuntu
OpenJDK vulnerabilities2013-02-14
CVE-2013-0429 — Oracle JDK vulnerability | cvebase