Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2013-0431

Опубликовано: 27 янв. 2013
Источник: redhat
CVSS2: 4.3

Описание

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, and OpenJDK 7, allows user-assisted remote attackers to bypass the Java security sandbox via unspecified vectors related to JMX, aka "Issue 52," a different vulnerability than CVE-2013-1490.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 5java-1.4.2-ibmWill not fix
Red Hat Enterprise Linux 5java-1.5.0-ibmNot affected
Red Hat Enterprise Linux 5java-1.6.0-ibmNot affected
Red Hat Enterprise Linux 5java-1.6.0-openjdkNot affected
Red Hat Enterprise Linux 5java-1.6.0-sunNot affected
Red Hat Enterprise Linux 6java-1.5.0-ibmNot affected
Red Hat Enterprise Linux 6java-1.6.0-ibmNot affected
Red Hat Enterprise Linux 6java-1.6.0-openjdkNot affected
Red Hat Enterprise Linux 6java-1.6.0-sunNot affected
Red Hat Enterprise Linux 5java-1.7.0-openjdkFixedRHSA-2013:024708.02.2013

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
https://bugzilla.redhat.com/show_bug.cgi?id=906447OpenJDK: JMX Introspector missing package access check (JMX, 8000539, SE-2012-01 Issue 52)

4.3 Medium

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2013-0431

CVSS3: 5.3
ubuntu
больше 12 лет назад

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, and OpenJDK 7, allows user-assisted remote attackers to bypass the Java security sandbox via unspecified vectors related to JMX, aka "Issue 52," a different vulnerability than CVE-2013-1490.

nvd логотип

CVE-2013-0431

CVSS3: 5.3
nvd
больше 12 лет назад

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, and OpenJDK 7, allows user-assisted remote attackers to bypass the Java security sandbox via unspecified vectors related to JMX, aka "Issue 52," a different vulnerability than CVE-2013-1490.

debian логотип

CVE-2013-0431

CVSS3: 5.3
debian
больше 12 лет назад

Unspecified vulnerability in the Java Runtime Environment (JRE) compon ...

github логотип

GHSA-h3cw-j9j9-5pc4

CVSS3: 5.3
github
больше 3 лет назад

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, and OpenJDK 7, allows user-assisted remote attackers to bypass the Java security sandbox via unspecified vectors related to JMX, aka "Issue 52," a different vulnerability than CVE-2013-1490.

fstec логотип

BDU:2022-03803

CVSS3: 5.3
fstec
больше 12 лет назад

Уязвимость программной платформы Java Runtime Environment, связанная с непринятием мер по нейтрализации scipt-related тэгов html на веб-странице, позволяющая нарушителю оказать воздействие на целостность защищаемой информации

4.3 Medium

CVSS2