Ibm Forms Viewer vulnerabilities

13 known vulnerabilities affecting ibm/forms_viewer.

Total CVEs

13

CISA KEV

0

Public exploits

1

Exploited in wild

0

Severity breakdown

CRITICAL6HIGH3MEDIUM3LOW1

Vulnerabilities

Page 1 of 1

CVE-2014-0461CRITICALCVSS 9.3≥ 4.0.0, < 4.0.0.3≥ 8.0.0, < 8.0.1.12014-04-16

CVE-2014-0461 [CRITICAL] CVE-2014-0461: Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows rem Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries.

CVE-2014-0429CRITICALCVSS 10.0≥ 4.0.0, < 4.0.0.3≥ 8.0.0, < 8.0.1.12014-04-16

CVE-2014-0429 [CRITICAL] CVE-2014-0429: Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JRockit R27.8.1 and R28.3.1; Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JRockit R27.8.1 and R28.3.1; and Java SE Embedded 7u51 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.

CVE-2014-0456CRITICALCVSS 10.0≥ 4.0.0, < 4.0.0.3≥ 8.0.0, < 8.0.1.12014-04-16

CVE-2014-0456 [CRITICAL] CVE-2014-0456: Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows rem Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.

CVE-2014-0457CRITICALCVSS 10.0≥ 4.0.0, < 4.0.0.3≥ 8.0.0, < 8.0.1.12014-04-16

CVE-2014-0457 [CRITICAL] CVE-2014-0457: Unspecified vulnerability in Oracle Java SE 5.0u61, SE 6u71, 7u51, and 8; JRockit R27.8.1 and R28.3. Unspecified vulnerability in Oracle Java SE 5.0u61, SE 6u71, 7u51, and 8; JRockit R27.8.1 and R28.3.1; and Java SE Embedded 7u51 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries.

CVE-2014-0455CRITICALCVSS 9.3≥ 4.0.0, < 4.0.0.3≥ 8.0.0, < 8.0.1.12014-04-16

CVE-2014-0455 [CRITICAL] CVE-2014-0455: Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote att Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2014-0432 and CVE-2014-2402.

CVE-2014-2421CRITICALCVSS 10.0≥ 4.0.0, < 4.0.0.3≥ 8.0.0, < 8.0.1.12014-04-16

CVE-2014-2421 [CRITICAL] CVE-2014-2421: Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JavaFX 2.2.51; and Java SE Em Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JavaFX 2.2.51; and Java SE Embedded 7u51 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.

CVE-2014-0454HIGHCVSS 7.5≥ 4.0.0, < 4.0.0.3≥ 8.0.0, < 8.0.1.12014-04-16

CVE-2014-0454 [HIGH] CVE-2014-0454: Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote att Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Security.

CVE-2014-2428HIGHCVSS 7.6≥ 4.0.0, < 4.0.0.3≥ 8.0.0, < 8.0.1.12014-04-16

CVE-2014-2428 [HIGH] CVE-2014-2428: Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows rem Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.

CVE-2014-0448HIGHCVSS 7.6≥ 4.0.0, < 4.0.0.3≥ 8.0.0, < 8.0.1.12014-04-16

CVE-2014-0448 [HIGH] CVE-2014-0448: Unspecified vulnerability in Oracle Java SE 7u51 and 8 allows remote attackers to affect confidentia Unspecified vulnerability in Oracle Java SE 7u51 and 8 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.

CVE-2014-2401MEDIUMCVSS 5.0≥ 4.0.0, < 4.0.0.3≥ 8.0.0, < 8.0.1.12014-04-16

CVE-2014-2401 [MEDIUM] CVE-2014-2401: Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JavaFX 2.2.51; and Java SE Em Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JavaFX 2.2.51; and Java SE Embedded 7u51 allows remote attackers to affect confidentiality via unknown vectors related to 2D.

CVE-2014-0453MEDIUMCVSS 4.0≥ 4.0.0, < 4.0.0.3≥ 8.0.0, < 8.0.1.12014-04-16

CVE-2014-0453 [MEDIUM] CVE-2014-0453: Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JRockit R27.8.1 and R28.3.1; Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JRockit R27.8.1 and R28.3.1; and Java SE Embedded 7u51 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Security.

CVE-2014-2398LOWCVSS 3.5≥ 4.0.0, < 4.0.0.3≥ 8.0.0, < 8.0.1.12014-04-16

CVE-2014-2398 [LOW] CVE-2014-2398: Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JavaFX 2.2.51; and JRockit R2 Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JavaFX 2.2.51; and JRockit R27.8.1 and R28.3.1 allows remote authenticated users to affect integrity via unknown vectors related to Javadoc.

CVE-2013-5447MEDIUMCVSS 6.8PoCv4.0.0v4.0.0.1+3 more2013-12-10

CVE-2013-5447 [MEDIUM] CWE-119 CVE-2013-5447: Stack-based buffer overflow in IBM Forms Viewer 4.x before 4.0.0.3 and 8.x before 8.0.1.1 allows rem Stack-based buffer overflow in IBM Forms Viewer 4.x before 4.0.0.3 and 8.x before 8.0.1.1 allows remote attackers to execute arbitrary code via an XFDL form with a long fontname value.