Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2012-4823

Опубликовано: 11 янв. 2013
Источник: nvd
CVSS2: 9.3
EPSS Средний

Описание

Unspecified vulnerability in the JRE component in IBM Java 7 SR2 and earlier, Java 6.0.1 SR3 and earlier, Java 6 SR11 and earlier, Java 5 SR14 and earlier, and Java 142 SR13 FP13 and earlier; as used in IBM Rational Host On-Demand, Rational Change, Tivoli Monitoring, Smart Analytics System 5600, Tivoli Remote Control 5.1.2, WebSphere Real Time, Lotus Notes & Domino, Tivoli Storage Productivity Center, and Service Deliver Manager; and other products from other vendors such as Red Hat, allows remote attackers to execute arbitrary code via vectors related to "insecure use of the java.lang.ClassLoder defineClass() method."

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:ibm:java:*:*:*:*:*:*:*:*
Версия от 1.4.2 (включая) до 1.4.2.13.13 (включая)
cpe:2.3:a:ibm:java:*:*:*:*:*:*:*:*
Версия от 5.0.0.0 (включая) до 5.0.14.0 (включая)
cpe:2.3:a:ibm:java:*:*:*:*:*:*:*:*
Версия от 6.0.0.0 (включая) до 6.0.11.0 (включая)
cpe:2.3:a:ibm:java:*:*:*:*:*:*:*:*
Версия от 7.0.0.0 (включая) до 7.0.2.0 (включая)
cpe:2.3:a:ibm:lotus_domino:8.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_domino:8.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_domino:8.0.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_domino:8.0.2.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_domino:8.0.2.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_domino:8.0.2.3:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_domino:8.0.2.4:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_domino:8.5.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_domino:8.5.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_domino:8.5.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_domino:8.5.1.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_domino:8.5.1.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_domino:8.5.1.3:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_domino:8.5.1.4:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_domino:8.5.1.5:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_domino:8.5.2.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_domino:8.5.2.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_domino:8.5.2.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_domino:8.5.2.3:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_domino:8.5.2.4:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_domino:8.5.3.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_domino:8.5.3.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_domino:8.5.3.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes:8.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes:8.0.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes:8.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes:8.0.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes:8.0.2.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes:8.0.2.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes:8.0.2.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes:8.0.2.3:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes:8.0.2.4:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes:8.0.2.5:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes:8.0.2.6:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes:8.5:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes:8.5.0.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes:8.5.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes:8.5.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes:8.5.1.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes:8.5.1.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes:8.5.1.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes:8.5.1.3:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes:8.5.1.4:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes:8.5.1.5:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes:8.5.2.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes:8.5.2.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes:8.5.2.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes:8.5.2.3:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes:8.5.3:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes:8.5.3.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes:8.5.3.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes:8.5.4:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes_sametime:8.0.80407:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes_sametime:8.0.80822:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes_sametime:8.5.1.20100709-1631:*:*:*:advanced_embedded:*:*:*
cpe:2.3:a:ibm:lotus_notes_traveler:8.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes_traveler:8.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes_traveler:8.0.1.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes_traveler:8.0.1.3:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes_traveler:8.5.0.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes_traveler:8.5.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes_traveler:8.5.0.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes_traveler:8.5.1.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes_traveler:8.5.1.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes_traveler:8.5.1.3:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes_traveler:8.5.2.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes_traveler:8.5.3:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes_traveler:8.5.3.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes_traveler:8.5.3.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes_traveler:8.5.3.3:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes_traveler:8.5.3.3:interim_fix_1:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_change:4.7:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_change:5.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_change:5.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_change:5.3:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_host_on-demand:1.6.0.12:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_host_on-demand:8.0.8.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_host_on-demand:9.0.8.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_host_on-demand:10.0.9.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_host_on-demand:10.0.10.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_host_on-demand:11.0.3.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_host_on-demand:11.0.4.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_host_on-demand:11.0.5.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_host_on-demand:11.0.5.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_host_on-demand:11.0.6.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_host_on-demand:11.0.6.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:service_delivery_manager:7.2.1.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:service_delivery_manager:7.2.2.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:smart_analytics_system_5600_software:-:*:*:*:*:*:*:*
cpe:2.3:a:ibm:smart_analytics_system_5600_software:9.7:*:*:*:*:*:*:*
cpe:2.3:a:ibm:tivoli_monitoring:6.1.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:tivoli_monitoring:6.1.0.7:*:*:*:*:*:*:*
cpe:2.3:a:ibm:tivoli_monitoring:6.2.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:tivoli_monitoring:6.2.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:tivoli_monitoring:6.2.0.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:tivoli_monitoring:6.2.0.3:*:*:*:*:*:*:*
cpe:2.3:a:ibm:tivoli_monitoring:6.2.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:tivoli_monitoring:6.2.1.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:tivoli_monitoring:6.2.1.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:tivoli_monitoring:6.2.1.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:tivoli_monitoring:6.2.1.3:*:*:*:*:*:*:*
cpe:2.3:a:ibm:tivoli_monitoring:6.2.1.4:*:*:*:*:*:*:*
cpe:2.3:a:ibm:tivoli_monitoring:6.2.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:tivoli_monitoring:6.2.2.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:tivoli_monitoring:6.2.2.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:tivoli_monitoring:6.2.2.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:tivoli_monitoring:6.2.2.3:*:*:*:*:*:*:*
cpe:2.3:a:ibm:tivoli_monitoring:6.2.2.4:*:*:*:*:*:*:*
cpe:2.3:a:ibm:tivoli_monitoring:6.2.2.5:*:*:*:*:*:*:*
cpe:2.3:a:ibm:tivoli_monitoring:6.2.2.6:*:*:*:*:*:*:*
cpe:2.3:a:ibm:tivoli_monitoring:6.2.2.7:*:*:*:*:*:*:*
cpe:2.3:a:ibm:tivoli_monitoring:6.2.2.8:*:*:*:*:*:*:*
cpe:2.3:a:ibm:tivoli_monitoring:6.2.2.9:*:*:*:*:*:*:*
cpe:2.3:a:ibm:tivoli_monitoring:6.2.3:*:*:*:*:*:*:*
cpe:2.3:a:ibm:tivoli_monitoring:6.2.3.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:tivoli_monitoring:6.2.3.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:tivoli_monitoring:6.2.3.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:tivoli_remote_control:5.1.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_real_time:2.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_real_time:3.0:*:*:*:*:*:*:*
cpe:2.3:a:tivoli_storage_productivity_center:5.0:*:*:*:*:*:*:*:*
cpe:2.3:a:tivoli_storage_productivity_center:5.1:*:*:*:*:*:*:*:*
cpe:2.3:a:tivoli_storage_productivity_center:5.1.1:*:*:*:*:*:*:*:*
cpe:2.3:h:ibm:smart_analytics_system_5600:7200:*:*:*:*:*:*:*

EPSS

Процентиль: 94%
0.1445
Средний

9.3 Critical

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

redhat логотип

CVE-2012-4823

redhat
около 13 лет назад

Unspecified vulnerability in the JRE component in IBM Java 7 SR2 and earlier, Java 6.0.1 SR3 and earlier, Java 6 SR11 and earlier, Java 5 SR14 and earlier, and Java 142 SR13 FP13 and earlier; as used in IBM Rational Host On-Demand, Rational Change, Tivoli Monitoring, Smart Analytics System 5600, Tivoli Remote Control 5.1.2, WebSphere Real Time, Lotus Notes & Domino, Tivoli Storage Productivity Center, and Service Deliver Manager; and other products from other vendors such as Red Hat, allows remote attackers to execute arbitrary code via vectors related to "insecure use of the java.lang.ClassLoder defineClass() method."

debian логотип

CVE-2012-4823

debian
около 13 лет назад

Unspecified vulnerability in the JRE component in IBM Java 7 SR2 and e ...

github логотип

GHSA-4837-9rvp-84f3

github
больше 3 лет назад

Unspecified vulnerability in the JRE component in IBM Java 7 SR2 and earlier, Java 6.0.1 SR3 and earlier, Java 6 SR11 and earlier, Java 5 SR14 and earlier, and Java 142 SR13 FP13 and earlier; as used in IBM Rational Host On-Demand, Rational Change, Tivoli Monitoring, Smart Analytics System 5600, Tivoli Remote Control 5.1.2, WebSphere Real Time, Lotus Notes & Domino, Tivoli Storage Productivity Center, and Service Deliver Manager; and other products from other vendors such as Red Hat, allows remote attackers to execute arbitrary code via vectors related to "insecure use of the java.lang.ClassLoder defineClass() method."

EPSS

Процентиль: 94%
0.1445
Средний

9.3 Critical

CVSS2

Дефекты

NVD-CWE-noinfo
Уязвимость CVE-2012-4823