CVE-2013-2400Oracle JDK vulnerability

7 documents4 sources
Severity
5.0MEDIUMNVD
EPSS
3.7%
top 12.02%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Oracle JDKOracle JRE
Timeline
PublishedJun 18
Latest updateMay 17

Description

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier allows remote attackers to affect integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2013-3744.

CVSS vector

AV:N/AC:L/C:N/I:P/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages2 packages

NVDoracle/jdk1.7.0+1
NVDoracle/jre1.7.0+1

🔴Vulnerability Details

2
GHSA
GHSA-j4wx-m5g4-624q: Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier allows remote attackers to affect2022-05-17
GHSA
GHSA-q5rw-ppj2-3cjj: Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier allows remote attackers to affect2022-05-17

📋Vendor Advisories

2
Red Hat
JDK: unspecified vulnerability fixed in 7u25 (Deployment)2013-06-18
Red Hat
JDK: unspecified vulnerability fixed in 7u25 (Deployment)2013-06-18

💬Community

1
Bugzilla
CVE-2013-2400 Oracle JDK: unspecified vulnerability fixed in 7u25 (Deployment)2013-06-19
CVE-2013-2400 — Oracle JDK vulnerability | cvebase