exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 8

CVE-2015-5234

почти 10 лет назад

IcedTea-Web before 1.5.3 and 1.6.x before 1.6.1 does not properly sanitize applet URLs, which allows remote attackers to inject applets into the .appletTrustSettings configuration file and bypass user approval to execute the applet via a crafted web page, possibly related to line breaks.

CVSS2: 6.8

EPSS: Низкий

CVE-2015-5234

около 10 лет назад

IcedTea-Web before 1.5.3 and 1.6.x before 1.6.1 does not properly sanitize applet URLs, which allows remote attackers to inject applets into the .appletTrustSettings configuration file and bypass user approval to execute the applet via a crafted web page, possibly related to line breaks.

CVSS2: 4.3

EPSS: Низкий

CVE-2015-5234

почти 10 лет назад

IcedTea-Web before 1.5.3 and 1.6.x before 1.6.1 does not properly sanitize applet URLs, which allows remote attackers to inject applets into the .appletTrustSettings configuration file and bypass user approval to execute the applet via a crafted web page, possibly related to line breaks.

CVSS2: 6.8

EPSS: Низкий

CVE-2015-5234

почти 10 лет назад

IcedTea-Web before 1.5.3 and 1.6.x before 1.6.1 does not properly sani ...

CVSS2: 6.8

EPSS: Низкий

GHSA-vjh2-cm2h-354g

больше 3 лет назад

IcedTea-Web before 1.5.3 and 1.6.x before 1.6.1 does not properly sanitize applet URLs, which allows remote attackers to inject applets into the .appletTrustSettings configuration file and bypass user approval to execute the applet via a crafted web page, possibly related to line breaks.

EPSS: Низкий

SUSE-SU-2015:1689-1

почти 10 лет назад

Security update for icedtea-web

EPSS: Низкий

SUSE-SU-2015:1682-1

почти 10 лет назад

Security update for icedtea-web

EPSS: Низкий

ELSA-2016-0778

больше 9 лет назад

ELSA-2016-0778: icedtea-web security, bug fix, and enhancement update (MODERATE)

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2015-5234 IcedTea-Web before 1.5.3 and 1.6.x before 1.6.1 does not properly sanitize applet URLs, which allows remote attackers to inject applets into the .appletTrustSettings configuration file and bypass user approval to execute the applet via a crafted web page, possibly related to line breaks.	CVSS2: 6.8	1% Низкий	почти 10 лет назад
CVE-2015-5234 IcedTea-Web before 1.5.3 and 1.6.x before 1.6.1 does not properly sanitize applet URLs, which allows remote attackers to inject applets into the .appletTrustSettings configuration file and bypass user approval to execute the applet via a crafted web page, possibly related to line breaks.	CVSS2: 4.3	1% Низкий	около 10 лет назад
CVE-2015-5234 IcedTea-Web before 1.5.3 and 1.6.x before 1.6.1 does not properly sanitize applet URLs, which allows remote attackers to inject applets into the .appletTrustSettings configuration file and bypass user approval to execute the applet via a crafted web page, possibly related to line breaks.	CVSS2: 6.8	1% Низкий	почти 10 лет назад
CVE-2015-5234 IcedTea-Web before 1.5.3 and 1.6.x before 1.6.1 does not properly sani ...	CVSS2: 6.8	1% Низкий	почти 10 лет назад
GHSA-vjh2-cm2h-354g IcedTea-Web before 1.5.3 and 1.6.x before 1.6.1 does not properly sanitize applet URLs, which allows remote attackers to inject applets into the .appletTrustSettings configuration file and bypass user approval to execute the applet via a crafted web page, possibly related to line breaks.		1% Низкий	больше 3 лет назад
SUSE-SU-2015:1689-1 Security update for icedtea-web			почти 10 лет назад
SUSE-SU-2015:1682-1 Security update for icedtea-web			почти 10 лет назад
ELSA-2016-0778 ELSA-2016-0778: icedtea-web security, bug fix, and enhancement update (MODERATE)			больше 9 лет назад

Уязвимостей на страницу