Sun Jdk vulnerabilities
392 known vulnerabilities affecting sun/jdk.
Total CVEs
392
CISA KEV
0
Public exploits
27
Exploited in wild
1
Severity breakdown
CRITICAL151HIGH70MEDIUM149LOW20
Vulnerabilities
Page 10 of 20
CVE-2011-0814CRITICALCVSS 10.0≤ 1.4.2_31v1.4.2+34 more2011-06-14
CVE-2011-0814 [CRITICAL] CVE-2011-0814: Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound, a different vulnerability than CVE-2011-0802.
nvd
CVE-2011-0817CRITICALCVSS 10.0≤ 1.6.0v1.6.02011-06-14
CVE-2011-0817 [CRITICAL] CVE-2011-0817: Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, when running on Windows, allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.
nvd
CVE-2011-0863CRITICALCVSS 10.0≤ 1.6.0v1.6.02011-06-14
CVE-2011-0863 [CRITICAL] CVE-2011-0863: Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.
nvd
CVE-2011-0862CRITICALCVSS 10.0≤ 1.4.2_31v1.4.2+34 more2011-06-14
CVE-2011-0862 [CRITICAL] CVE-2011-0862: Multiple unspecified vulnerabilities in the Java Runtime Environment (JRE) component in Oracle Java
Multiple unspecified vulnerabilities in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allow remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.
nvd
CVE-2011-0815CRITICALCVSS 10.0≤ 1.4.2_31v1.4.2+34 more2011-06-14
CVE-2011-0815 [CRITICAL] CVE-2011-0815: Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to AWT.
nvd
CVE-2011-0873CRITICALCVSS 10.0≤ 1.6.0v1.6.0+2 more2011-06-14
CVE-2011-0873 [CRITICAL] CVE-2011-0873: Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, and 5.0 Update 29 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.
nvd
CVE-2011-0786HIGHCVSS 7.6≤ 1.6.0v1.6.02011-06-14
CVE-2011-0786 [HIGH] CVE-2011-0786: Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, when running on Windows, allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2011-0788
nvd
CVE-2011-0788HIGHCVSS 7.6≤ 1.6.0v1.6.02011-06-14
CVE-2011-0788 [HIGH] CVE-2011-0788: Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, when running on Windows, allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2011-0786
nvd
CVE-2011-0866HIGHCVSS 7.6≤ 1.4.2_31v1.4.2+34 more2011-06-14
CVE-2011-0866 [HIGH] CVE-2011-0866: Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier, when running on Windows, allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Jav
nvd
CVE-2011-0868MEDIUMCVSS 5.0≤ 1.6.0v1.6.02011-06-14
CVE-2011-0868 [MEDIUM] CVE-2011-0868: Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier allows remote attackers to affect confidentiality via unknown vectors related to 2D.
nvd
CVE-2011-0872MEDIUMCVSS 5.0≤ 1.6.0v1.6.02011-06-14
CVE-2011-0872 [MEDIUM] CVE-2011-0872: Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier allows remote attackers to affect availability via unknown vectors related to NIO.
nvd
CVE-2011-0869MEDIUMCVSS 5.0≤ 1.6.0v1.6.02011-06-14
CVE-2011-0869 [MEDIUM] CVE-2011-0869: Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 26 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to SAAJ.
nvd
CVE-2011-0867MEDIUMCVSS 5.0≤ 1.4.2_31v1.4.2+34 more2011-06-14
CVE-2011-0867 [MEDIUM] CVE-2011-0867: Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to Networking.
nvd
CVE-2011-0865LOWCVSS 2.6≤ 1.4.2_31v1.4.2+34 more2011-06-14
CVE-2011-0865 [LOW] CVE-2011-0865: Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect integrity via unknown vectors related to Deserialization.
nvd
CVE-2011-0706HIGHCVSS 7.5v1.6.02011-02-19
CVE-2011-0706 [HIGH] CWE-264 CVE-2011-0706: The JNLPClassLoader class in IcedTea-Web before 1.0.1, as used in OpenJDK Runtime Environment 1.6.0,
The JNLPClassLoader class in IcedTea-Web before 1.0.1, as used in OpenJDK Runtime Environment 1.6.0, allows remote attackers to gain privileges via unknown vectors related to multiple signers and the assignment of "an inappropriate security descriptor."
nvd
CVE-2010-4454CRITICALCVSS 10.0≤ 1.6.0v1.6.0+2 more2011-02-17
CVE-2010-4454 [CRITICAL] CVE-2010-4454: Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Busin
Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound and unspecified APIs, a different vulnerability than CVE-2010-
nvd
CVE-2010-4465CRITICALCVSS 10.0≤ 1.6.0v1.6.0+2 more2011-02-17
CVE-2010-4465 [CRITICAL] CVE-2010-4465: Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Busin
Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Swing. NOTE:
nvd
CVE-2010-4462CRITICALCVSS 10.0≤ 1.6.0v1.6.0+2 more2011-02-17
CVE-2010-4462 [CRITICAL] CVE-2010-4462: Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Busin
Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound and unspecified APIs, a different vulnerability than CVE-2010-
nvd
CVE-2010-4473CRITICALCVSS 10.0≤ 1.6.0v1.6.0+2 more2011-02-17
CVE-2010-4473 [CRITICAL] CVE-2010-4473: Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Busin
Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound and unspecified APIs, a different vulnerability than CVE-2010-
nvd
CVE-2010-4469CRITICALCVSS 10.0≤ 1.6.0v1.6.0+2 more2011-02-17
CVE-2010-4469 [CRITICAL] CVE-2010-4469: Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Busin
Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to HotSpot. NOTE
nvd