CVE-2013-5800Oracle JDK vulnerability

5 documents5 sources
Severity
4.3MEDIUMNVD
EPSS
2.2%
top 15.46%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Oracle JDKOracle JRE
Timeline
PublishedOct 16
Latest updateMay 14

Description

Unspecified vulnerability in Oracle Java SE 7u40 and earlier and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality via vectors related to JGSS.

CVSS vector

AV:N/AC:M/C:P/I:N/A:NExploitability: 8.6 | Impact: 2.9

Affected Packages2 packages

NVDoracle/jdk1.7.0+1
NVDoracle/jre1.7.0+1

🔴Vulnerability Details

1
GHSA
GHSA-pqph-p45p-gw7f: Unspecified vulnerability in Oracle Java SE 7u40 and earlier and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality v2022-05-14

📋Vendor Advisories

2
Ubuntu
OpenJDK 7 vulnerabilities2014-01-23
Red Hat
OpenJDK: default keytab path information leak (JGSS, 8022931)2013-10-15

💬Community

1
Bugzilla
CVE-2013-5800 OpenJDK: default keytab path information leak (JGSS, 8022931)2013-10-14
CVE-2013-5800 — Oracle JDK vulnerability | cvebase