CVE-2013-5375

6 documents5 sources
Severity
6.8MEDIUM
EPSS
1.9%
top 16.95%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Java
Timeline
PublishedNov 24
Latest updateMay 17

Description

Unspecified vulnerability in IBM Java SDK 7.0.0 before SR6, 6.0.1 before SR7, 6.0.0 before SR15, and 5.0.0 before SR16 FP4 allows remote attackers to access restricted classes via unspecified vectors related to XML and XSL.

CVSS vector

AV:N/AC:M/C:P/I:P/A:PExploitability: 8.6 | Impact: 6.4

Affected Packages1 packages

NVDibm/java4 versions+3

🔴Vulnerability Details

2
GHSA
GHSA-7h9x-q59m-q97v: Unspecified vulnerability in IBM Java SDK 72022-05-17
CVEList
CVE-2013-5375: Unspecified vulnerability in IBM Java SDK 72013-11-24

📋Vendor Advisories

1
Red Hat
JDK: unspecified sandbox bypass (XML)2013-11-05

💬Community

2
Bugzilla
CVE-2013-5375 IBM JDK: unspecified sandbox bypass (XML)2013-11-07
Bugzilla
CVE-2013-4041 IBM JDK: unspecified sandbox bypass (JVM)2013-11-07
CVE-2013-5375 (MEDIUM CVSS 6.8) | Unspecified vulnerability in IBM Ja | cvebase.io