CVE-2013-1484

high
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 13 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries.

References

http://blog.fuseyism.com/index.php/2013/02/20/security-icedtea-2-1-6-2-2-6-2-3-7-for-openjdk-7-released/

http://marc.info/?l=bugtraq&m=136439120408139&w=2

http://marc.info/?l=bugtraq&m=136733161405818&w=2

http://security.gentoo.org/glsa/glsa-201406-32.xml

http://www.mandriva.com/security/advisories?name=MDVSA-2013:095

http://www.oracle.com/technetwork/topics/security/javacpufeb2013update-1905892.html

http://www.ubuntu.com/usn/USN-1735-1

http://www.us-cert.gov/cas/techalerts/TA13-051A.html

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19508

https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0084

Details

Source: MITRE

Published: 2013-02-20

Updated: 2017-09-19

Risk Information

CVSS v2

Base Score: 10

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Impact Score: 10

Exploitability Score: 10

Severity: HIGH

Tenable Plugins

View all (14 total)

IDNameProductFamilySeverity
76303GLSA-201406-32 : IcedTea JDK: Multiple vulnerabilities (BEAST) (ROBOT)NessusGentoo Local Security Checks
critical
72139GLSA-201401-30 : Oracle JRE/JDK: Multiple vulnerabilities (ROBOT)NessusGentoo Local Security Checks
critical
68736Oracle Linux 5 / 6 : java-1.7.0-openjdk (ELSA-2013-0275)NessusOracle Linux Local Security Checks
critical
66107Mandriva Linux Security Advisory : java-1.7.0-openjdk (MDVSA-2013:095)NessusMandriva Local Security Checks
critical
65246SuSE 11.2 Security Update : Java (SAT Patch Number 7454)NessusSuSE Local Security Checks
critical
65204RHEL 5 / 6 : java-1.7.0-ibm (RHSA-2013:0626)NessusRed Hat Local Security Checks
critical
64851Oracle Java SE Multiple Vulnerabilities (February 2013 CPU Update 1) (Unix)NessusMisc.
critical
64801Ubuntu 10.04 LTS / 11.10 / 12.04 LTS / 12.10 : openjdk-6, openjdk-7 vulnerabilities (USN-1735-1)NessusUbuntu Local Security Checks
critical
64790Oracle Java SE Multiple Vulnerabilities (February 2013 CPU Update 1)NessusWindows
critical
64775RHEL 5 / 6 : java-1.7.0-oracle (RHSA-2013:0532)NessusRed Hat Local Security Checks
critical
64748RHEL 5 / 6 : java-1.7.0-openjdk (RHSA-2013:0275)NessusRed Hat Local Security Checks
critical
64731CentOS 5 / 6 : java-1.7.0-openjdk (CESA-2013:0275)NessusCentOS Local Security Checks
critical
6699Oracle Java SE Multiple Vulnerabilities (February 2013 CPU Update 1)Nessus Network MonitorWeb Clients
critical
6699Oracle Java SE Multiple Vulnerabilities (February 2013 CPU Update 1)Nessus Network MonitorWeb Clients
critical