CVE-2020-2764

4 documents4 sources
Severity
3.7LOW
EPSS
1.1%
top 22.25%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Oracle Corporation JavaOracle Java Advanced Management Console
Timeline
PublishedApr 15
Latest updateMay 24

Description

Vulnerability in the Java SE product of Oracle Java SE (component: Advanced Management Console). The supported version that is affected is Java Advanced Management Console: 2.16. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE accessible data. Note: This vulnerability can only be exploited by supplying data to

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:NExploitability: 2.2 | Impact: 1.4

Affected Packages2 packages

CVEListV5oracle_corporation/javaJava Advanced Management Console: 2.16

🔴Vulnerability Details

2
GHSA
GHSA-5r94-732v-9hm6: Vulnerability in the Java SE product of Oracle Java SE (component: Advanced Management Console)2022-05-24
CVEList
CVE-2020-2764: Vulnerability in the Java SE product of Oracle Java SE (component: Advanced Management Console)2020-04-15

📋Vendor Advisories

1
Oracle
Oracle Oracle Java SE Risk Matrix: Advanced Management Console — CVE-2020-27642020-04-15
CVE-2020-2764 (LOW CVSS 3.7) | Vulnerability in the Java SE produc | cvebase.io