CVE-2013-5852

critical

Description

Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2013-5787, CVE-2013-5789, CVE-2013-5824, and CVE-2013-5832.

References

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18983

https://access.redhat.com/errata/RHSA-2014:0414

http://www.securityfocus.com/bid/63130

http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html

http://rhn.redhat.com/errata/RHSA-2013-1440.html

http://osvdb.org/98543

http://marc.info/?l=bugtraq&m=138674073720143&w=2

http://marc.info/?l=bugtraq&m=138674031212883&w=2

Details

Source: Mitre, NVD

Published: 2013-10-16

Updated: 2025-04-11

Risk Information

CVSS v2

Base Score: 7.6

Vector: CVSS2#AV:N/AC:H/Au:N/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 10

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Severity: Critical

EPSS

EPSS: 0.01888