CVE-2017-10274
11 documents8 sources
Severity
6.8MEDIUM
EPSS
0.6%
top 30.32%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedOct 19
Latest updateMay 13
Description
Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Smart Card IO). Supported versions that are affected are Java SE: 6u161, 7u151, 8u144 and 9. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to criti…
CVSS vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:NExploitability: 1.6 | Impact: 5.2
Affected Packages14 packages
Also affects: Debian Linux 7.0, 8.0, 9.0, Enterprise Linux 7.4, 7.5, 7.6, 7.7
Patches
🔴Vulnerability Details
5GHSA▶
GHSA-22qx-hc7j-pqmg: Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Smart Card IO)↗2022-05-13
OSV▶
CVE-2017-10274: Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Smart Card IO)↗2017-10-19
CVEList▶
CVE-2017-10274: Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Smart Card IO)↗2017-10-19
📋Vendor Advisories
4💬Community
1Bugzilla
▶