CVE-2019-2745
Severity
5.1MEDIUM
EPSS
0.1%
top 78.78%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedJul 23
Latest updateMay 24
Description
Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Security). Supported versions that are affected are Java SE: 7u221, 8u212 and 11.0.3. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where Java SE executes to compromise Java SE. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Java SE accessible data. Note: This vulnerability applies to Java deployments,…
CVSS vector
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 1.4 | Impact: 3.6
Affected Packages8 packages
Also affects: Debian Linux 8.0, Ubuntu Linux 16.04
Patches
🔴Vulnerability Details
4GHSA▶
GHSA-ff2w-wwj3-c5m5: Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Security)↗2022-05-24
CVEList▶
CVE-2019-2745: Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Security)↗2019-07-23
OSV▶
CVE-2019-2745: Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Security)↗2019-07-23