CVE-2012-1723

Опубликовано: 16 июн. 2012

Источник: nvd

CVSS3: 9.8

CVSS2: 10

EPSS Критический

Описание

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.2_37 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.

Ссылки

http://mail.openjdk.java.net/pipermail/distro-pkg-dev/2012-June/019076.html
Mailing List
http://marc.info/?l=bugtraq&m=134496371727681&w=2
Mailing List
http://marc.info/?l=bugtraq&m=134496371727681&w=2
Mailing List
http://marc.info/?l=bugtraq&m=134496371727681&w=2
Mailing List
http://marc.info/?l=bugtraq&m=134496371727681&w=2
Mailing List
http://rhn.redhat.com/errata/RHSA-2012-0734.html
Third Party Advisory
http://secunia.com/advisories/51080
Broken Link
http://security.gentoo.org/glsa/glsa-201406-32.xml
Third Party Advisory
http://www.ibm.com/support/docview.wss?uid=swg21615246
Broken Link
http://www.mandriva.com/security/advisories?name=MDVSA-2012:095
Broken Link
http://www.oracle.com/technetwork/topics/security/javacpujun2012-1515912.html
Vendor Advisory
http://www.securityfocus.com/bid/53960
Broken Link
Third Party Advisory
VDB Entry
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16259
Broken Link
http://mail.openjdk.java.net/pipermail/distro-pkg-dev/2012-June/019076.html
Mailing List
http://marc.info/?l=bugtraq&m=134496371727681&w=2
Mailing List
http://marc.info/?l=bugtraq&m=134496371727681&w=2
Mailing List
http://marc.info/?l=bugtraq&m=134496371727681&w=2
Mailing List
http://marc.info/?l=bugtraq&m=134496371727681&w=2
Mailing List
http://rhn.redhat.com/errata/RHSA-2012-0734.html
Third Party Advisory
http://secunia.com/advisories/51080
Broken Link

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:oracle:jdk:*:*:*:*:*:*:*:*

Версия до 1.4.2_37 (включая)

cpe:2.3:a:oracle:jdk:1.5.0:-:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.5.0:update1:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.5.0:update10:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.5.0:update11:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.5.0:update12:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.5.0:update13:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.5.0:update14:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.5.0:update15:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.5.0:update16:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.5.0:update17:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.5.0:update18:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.5.0:update19:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.5.0:update2:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.5.0:update20:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.5.0:update21:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.5.0:update22:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.5.0:update23:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.5.0:update24:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.5.0:update25:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.5.0:update26:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.5.0:update27:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.5.0:update28:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.5.0:update29:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.5.0:update3:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.5.0:update30:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.5.0:update31:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.5.0:update32:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.5.0:update33:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.5.0:update34:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.5.0:update35:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.6.0:-:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.6.0:update1:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.6.0:update10:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.6.0:update11:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.6.0:update12:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.6.0:update13:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.6.0:update14:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.6.0:update15:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.6.0:update16:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.6.0:update17:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.6.0:update18:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.6.0:update19:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.6.0:update2:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.6.0:update20:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.6.0:update21:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.6.0:update22:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.6.0:update23:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.6.0:update24:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.6.0:update25:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.6.0:update26:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.6.0:update27:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.6.0:update29:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.6.0:update3:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.6.0:update30:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.6.0:update31:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.6.0:update32:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.6.0:update32_b31:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.6.0:update32_b32:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.7.0:-:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.7.0:update1:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.7.0:update2:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.7.0:update3:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.7.0:update4:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:*:*:*:*:*:*:*:*

Версия до 1.4.2_37 (включая)

cpe:2.3:a:oracle:jre:1.5.0:-:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.5.0:update1:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.5.0:update10:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.5.0:update11:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.5.0:update12:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.5.0:update13:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.5.0:update14:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.5.0:update15:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.5.0:update16:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.5.0:update17:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.5.0:update18:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.5.0:update19:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.5.0:update2:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.5.0:update20:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.5.0:update21:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.5.0:update22:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.5.0:update23:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.5.0:update24:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.5.0:update25:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.5.0:update26:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.5.0:update27:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.5.0:update28:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.5.0:update29:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.5.0:update3:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.5.0:update30:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.5.0:update31:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.5.0:update32:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.5.0:update33:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.5.0:update34:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.5.0:update35:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.6.0:-:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.6.0:update1:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.6.0:update10:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.6.0:update11:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.6.0:update12:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.6.0:update13:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.6.0:update14:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.6.0:update15:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.6.0:update16:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.6.0:update17:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.6.0:update18:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.6.0:update19:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.6.0:update2:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.6.0:update20:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.6.0:update21:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.6.0:update22:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.6.0:update23:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.6.0:update24:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.6.0:update25:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.6.0:update26:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.6.0:update27:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.6.0:update29:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.6.0:update3:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.6.0:update30:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.6.0:update31:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.6.0:update32:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.7.0:-:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.7.0:update1:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.7.0:update2:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.7.0:update3:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.7.0:update4:*:*:*:*:*:*

Конфигурация 2

Одно из

cpe:2.3:a:redhat:icedtea6:*:*:*:*:*:*:*:*

Версия до 1.10.8 (исключая)

cpe:2.3:a:redhat:icedtea6:*:*:*:*:*:*:*:*

Версия от 1.11.0 (включая) до 1.11.3 (исключая)

cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_eus:6.2:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server:5.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server_aus:6.2:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_workstation:5.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*

EPSS

Процентиль: 100%

0.94083

Критический

9.8 Critical

CVSS3

10 Critical

CVSS2

Дефекты

NVD-CWE-noinfo

CWE-284

Связанные уязвимости

CVE-2012-1723

CVSS3: 9.8

ubuntu

около 13 лет назад

CVE-2012-1723

redhat

около 13 лет назад

CVE-2012-1723

CVSS3: 9.8

debian

около 13 лет назад

Unspecified vulnerability in the Java Runtime Environment (JRE) compon ...

GHSA-ch9c-pq9h-jrr9

CVSS3: 9.8

github

больше 3 лет назад

ELSA-2012-0730

oracle-oval

около 13 лет назад

ELSA-2012-0730: java-1.6.0-openjdk security update (IMPORTANT)

EPSS

Процентиль: 100%

0.94083

Критический

9.8 Critical

CVSS3

10 Critical

CVSS2

Дефекты

NVD-CWE-noinfo

CWE-284