Oracle Jre vulnerabilities

790 known vulnerabilities affecting oracle/jre.

Total CVEs

790

CISA KEV

actively exploited

Public exploits

Exploited in wild

Severity breakdown

CRITICAL205HIGH119MEDIUM346LOW118

Vulnerabilities

Page 22 of 40

CVE-2015-0421MEDIUMCVSS 6.9v1.8.02015-01-21

CVE-2015-0421 [MEDIUM] CVE-2015-0421: Unspecified vulnerability in Oracle Java SE 8u25 allows local users to affect confidentiality, integ Unspecified vulnerability in Oracle Java SE 8u25 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to the installation process.

nvd

CVE-2014-6593MEDIUMCVSS 4.0PoCv1.5.0v1.6.0+2 more2015-01-21

CVE-2014-6593 [MEDIUM] CVE-2014-6593: Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25; Java SE Embedded 7u71 and Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25; Java SE Embedded 7u71 and 8u6; and JRockit 27.8.4 and 28.3.4 allows remote attackers to affect confidentiality and integrity via vectors related to JSSE.

nvd

CVE-2015-0410MEDIUMCVSS 5.0v1.5.0v1.6.0+2 more2015-01-21

CVE-2015-0410 [MEDIUM] CVE-2015-0410: Unspecified vulnerability in the Java SE, Java SE Embedded, JRockit component in Oracle Java SE 5.0u Unspecified vulnerability in the Java SE, Java SE Embedded, JRockit component in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25; Java SE Embedded 7u71 and 8u6; and JRockit R27.8.4 and R28.3.4 allows remote attackers to affect availability via unknown vectors related to Security.

nvd

CVE-2015-0383MEDIUMCVSS 5.4v1.5.0v1.6.0+2 more2015-01-21

CVE-2015-0383 [MEDIUM] CVE-2015-0383: Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25; Java SE Embedded 7u71 and Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25; Java SE Embedded 7u71 and 8u6; and JRockit R27.8.4 and R28.3.4 allows local users to affect integrity and availability via unknown vectors related to Hotspot.

nvd

CVE-2015-0403MEDIUMCVSS 6.9v1.6.0v1.7.0+1 more2015-01-21

CVE-2015-0403 [MEDIUM] CVE-2015-0403: Unspecified vulnerability in Oracle Java SE 6u85, 7u72, and 8u25 allows local users to affect confid Unspecified vulnerability in Oracle Java SE 6u85, 7u72, and 8u25 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.

nvd

CVE-2014-6591LOWCVSS 2.6v1.5.0v1.6.0+2 more2015-01-21

CVE-2014-6591 [LOW] CVE-2014-6591: Unspecified vulnerability in the Java SE component in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 al Unspecified vulnerability in the Java SE component in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality via unknown vectors related to 2D, a different vulnerability than CVE-2014-6585.

nvd

CVE-2015-0413LOWCVSS 1.9v1.7.0v1.8.02015-01-21

CVE-2015-0413 [LOW] CVE-2015-0413: Unspecified vulnerability in Oracle Java SE 7u72 and 8u25 allows local users to affect integrity via Unspecified vulnerability in Oracle Java SE 7u72 and 8u25 allows local users to affect integrity via unknown vectors related to Serviceability.

nvd

CVE-2014-6585LOWCVSS 2.6v1.5.0v1.6.0+2 more2015-01-21

CVE-2014-6585 [LOW] CVE-2014-6585: Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allows remote attackers to Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality via unknown vectors related to 2D, a different vulnerability than CVE-2014-6591.

nvd

CVE-2014-6513CRITICALCVSS 10.0v1.6.0v1.7.0+1 more2014-10-15

CVE-2014-6513 [CRITICAL] CVE-2014-6513: Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20, and Java SE Embedded 7u60, allows Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20, and Java SE Embedded 7u60, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT.

nvd

CVE-2014-6532CRITICALCVSS 9.3v1.6.0v1.7.0+1 more2014-10-15

CVE-2014-6532 [CRITICAL] CVE-2014-6532: Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20 allows remote attackers to affect c Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2014-4288, CVE-2014-6493, and CVE-2014-6503.

nvd

CVE-2014-6503CRITICALCVSS 9.3v1.6.0v1.7.0+1 more2014-10-15

CVE-2014-6503 [CRITICAL] CVE-2014-6503: Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20 allows remote attackers to affect c Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2014-4288, CVE-2014-6493, and CVE-2014-6532.

nvd

CVE-2014-6485CRITICALCVSS 9.3v1.8.02014-10-15

CVE-2014-6485 [CRITICAL] CVE-2014-6485: Unspecified vulnerability in Oracle Java SE 8u20 and JavaFX 2.2.65 allows remote attackers to affect Unspecified vulnerability in Oracle Java SE 8u20 and JavaFX 2.2.65 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.

nvd

CVE-2014-6456CRITICALCVSS 9.3v1.7.0v1.8.02014-10-15

CVE-2014-6456 [CRITICAL] CVE-2014-6456: Unspecified vulnerability in Oracle Java SE 7u67 and 8u20 allows remote attackers to affect confiden Unspecified vulnerability in Oracle Java SE 7u67 and 8u20 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.

nvd

CVE-2014-6562CRITICALCVSS 9.3v1.8.02014-10-15

CVE-2014-6562 [CRITICAL] CVE-2014-6562: Unspecified vulnerability in Oracle Java SE 8u20 allows remote attackers to affect confidentiality, Unspecified vulnerability in Oracle Java SE 8u20 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries.

nvd

CVE-2014-6492HIGHCVSS 7.6v1.6.0v1.7.0+1 more2014-10-15

CVE-2014-6492 [HIGH] CVE-2014-6492: Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20, when running on Firefox, allows re Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20, when running on Firefox, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.

nvd

CVE-2014-6493HIGHCVSS 7.6v1.6.0v1.7.0+1 more2014-10-15

CVE-2014-6493 [HIGH] CVE-2014-6493: Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20 allows remote attackers to affect c Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2014-4288, CVE-2014-6503, and CVE-2014-6532.

nvd

CVE-2014-4288HIGHCVSS 7.6v1.6.0v1.7.0+1 more2014-10-15

CVE-2014-4288 [HIGH] CVE-2014-4288: Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20 allows remote attackers to affect c Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2014-6493, CVE-2014-6503, and CVE-2014-6532.

nvd

CVE-2014-6531MEDIUMCVSS 4.3v1.5.0v1.6.0+2 more2014-10-15

CVE-2014-6531 [MEDIUM] CVE-2014-6531: Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20, and Java SE Embedded 7u60, Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20, and Java SE Embedded 7u60, allows remote attackers to affect confidentiality via unknown vectors related to Libraries.

nvd

CVE-2014-6512MEDIUMCVSS 4.3v1.5.0v1.6.0+2 more2014-10-15

CVE-2014-6512 [MEDIUM] CVE-2014-6512: Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20; Java SE Embedded 7u60; and Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20; Java SE Embedded 7u60; and JRockit R27.8.3 and R28.3.3 allows remote attackers to affect integrity via unknown vectors related to Libraries.

nvd

CVE-2014-6515MEDIUMCVSS 5.0v1.6.0v1.7.0+1 more2014-10-15

CVE-2014-6515 [MEDIUM] CVE-2014-6515: Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20 allows remote attackers to affect i Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20 allows remote attackers to affect integrity via unknown vectors related to Deployment.

nvd

← Previous22 / 40Next →