CVE-2013-1487

Опубликовано: 20 фев. 2013

Источник: nvd

CVSS2: 10

EPSS Низкий

Описание

Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE 7 Update 13 and earlier and 6 Update 39 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.

Комментарий

Per http://www.oracle.com/technetwork/topics/security/javacpufeb2013update-1905892.html 'Applies to client deployment of Java only. This vulnerability can be exploited only through untrusted Java Web Start applications and untrusted Java applets. (Untrusted Java Web Start applications and untrusted applets run in the Java sandbox with limited privileges.)'

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:oracle:jre:1.7.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.7.0:update1:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.7.0:update10:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.7.0:update11:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.7.0:update13:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.7.0:update2:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.7.0:update3:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.7.0:update4:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.7.0:update5:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.7.0:update6:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.7.0:update7:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.7.0:update9:*:*:*:*:*:*

Конфигурация 2

Одно из

cpe:2.3:a:oracle:jdk:1.7.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.7.0:update1:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.7.0:update10:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.7.0:update11:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.7.0:update13:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.7.0:update2:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.7.0:update3:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.7.0:update4:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.7.0:update5:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.7.0:update6:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.7.0:update7:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.7.0:update9:*:*:*:*:*:*

Конфигурация 3

Одно из

cpe:2.3:a:oracle:jre:1.6.0:update22:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.6.0:update23:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.6.0:update24:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.6.0:update25:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.6.0:update26:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.6.0:update27:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.6.0:update29:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.6.0:update30:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.6.0:update31:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.6.0:update32:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.6.0:update33:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.6.0:update34:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.6.0:update35:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.6.0:update37:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.6.0:update38:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.6.0:update39:*:*:*:*:*:*

cpe:2.3:a:sun:jre:1.6.0:*:*:*:*:*:*:*

cpe:2.3:a:sun:jre:1.6.0:update_1:*:*:*:*:*:*

cpe:2.3:a:sun:jre:1.6.0:update_10:*:*:*:*:*:*

cpe:2.3:a:sun:jre:1.6.0:update_11:*:*:*:*:*:*

cpe:2.3:a:sun:jre:1.6.0:update_12:*:*:*:*:*:*

cpe:2.3:a:sun:jre:1.6.0:update_13:*:*:*:*:*:*

cpe:2.3:a:sun:jre:1.6.0:update_14:*:*:*:*:*:*

cpe:2.3:a:sun:jre:1.6.0:update_15:*:*:*:*:*:*

cpe:2.3:a:sun:jre:1.6.0:update_16:*:*:*:*:*:*

cpe:2.3:a:sun:jre:1.6.0:update_17:*:*:*:*:*:*

cpe:2.3:a:sun:jre:1.6.0:update_18:*:*:*:*:*:*

cpe:2.3:a:sun:jre:1.6.0:update_19:*:*:*:*:*:*

cpe:2.3:a:sun:jre:1.6.0:update_2:*:*:*:*:*:*

cpe:2.3:a:sun:jre:1.6.0:update_20:*:*:*:*:*:*

cpe:2.3:a:sun:jre:1.6.0:update_21:*:*:*:*:*:*

cpe:2.3:a:sun:jre:1.6.0:update_3:*:*:*:*:*:*

cpe:2.3:a:sun:jre:1.6.0:update_4:*:*:*:*:*:*

cpe:2.3:a:sun:jre:1.6.0:update_5:*:*:*:*:*:*

cpe:2.3:a:sun:jre:1.6.0:update_6:*:*:*:*:*:*

cpe:2.3:a:sun:jre:1.6.0:update_7:*:*:*:*:*:*

cpe:2.3:a:sun:jre:1.6.0:update_9:*:*:*:*:*:*

Конфигурация 4

Одно из

cpe:2.3:a:oracle:jdk:1.6.0:update22:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.6.0:update23:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.6.0:update24:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.6.0:update25:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.6.0:update26:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.6.0:update27:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.6.0:update29:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.6.0:update30:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.6.0:update31:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.6.0:update32:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.6.0:update33:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.6.0:update34:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.6.0:update35:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.6.0:update37:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.6.0:update38:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.6.0:update39:*:*:*:*:*:*

cpe:2.3:a:sun:jdk:1.6.0:*:*:*:*:*:*:*

cpe:2.3:a:sun:jdk:1.6.0:update_10:*:*:*:*:*:*

cpe:2.3:a:sun:jdk:1.6.0:update_11:*:*:*:*:*:*

cpe:2.3:a:sun:jdk:1.6.0:update_12:*:*:*:*:*:*

cpe:2.3:a:sun:jdk:1.6.0:update_13:*:*:*:*:*:*

cpe:2.3:a:sun:jdk:1.6.0:update_14:*:*:*:*:*:*

cpe:2.3:a:sun:jdk:1.6.0:update_15:*:*:*:*:*:*

cpe:2.3:a:sun:jdk:1.6.0:update_16:*:*:*:*:*:*

cpe:2.3:a:sun:jdk:1.6.0:update_17:*:*:*:*:*:*

cpe:2.3:a:sun:jdk:1.6.0:update_18:*:*:*:*:*:*

cpe:2.3:a:sun:jdk:1.6.0:update_19:*:*:*:*:*:*

cpe:2.3:a:sun:jdk:1.6.0:update_20:*:*:*:*:*:*

cpe:2.3:a:sun:jdk:1.6.0:update_21:*:*:*:*:*:*

cpe:2.3:a:sun:jdk:1.6.0:update_3:*:*:*:*:*:*

cpe:2.3:a:sun:jdk:1.6.0:update_4:*:*:*:*:*:*

cpe:2.3:a:sun:jdk:1.6.0:update_5:*:*:*:*:*:*

cpe:2.3:a:sun:jdk:1.6.0:update_6:*:*:*:*:*:*

cpe:2.3:a:sun:jdk:1.6.0:update_7:*:*:*:*:*:*

cpe:2.3:a:sun:jdk:1.6.0:update1:*:*:*:*:*:*

cpe:2.3:a:sun:jdk:1.6.0:update1_b06:*:*:*:*:*:*

cpe:2.3:a:sun:jdk:1.6.0:update2:*:*:*:*:*:*

EPSS

Процентиль: 86%

0.03052

Низкий

10 Critical

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

CVE-2013-1487

ubuntu

почти 13 лет назад

CVE-2013-1487

redhat

почти 13 лет назад

CVE-2013-1487

debian

почти 13 лет назад

Unspecified vulnerability in the Java Runtime Environment component in ...

GHSA-38cq-685v-jw65

github

больше 3 лет назад

SUSE-SU-2015:1086-1

suse-cvrf

около 12 лет назад

Security update for IBM Java 6

EPSS

Процентиль: 86%

0.03052

Низкий

10 Critical

CVSS2

Дефекты

NVD-CWE-noinfo