The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.
Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Sound). The supported version that is affected is Java SE: 11. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE accessible data. Note: This vulnerability applies to Java deployments that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 3.7 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N).
Base Score: 4.3
Impact Score: 2.9
Exploitability Score: 8.6
Base Score: 3.7
Impact Score: 1.4
Exploitability Score: 2.2
|136109||Photon OS 1.0: Openjdk11 PHSA-2020-1.0-0290||Nessus||PhotonOS Local Security Checks|
|136100||Photon OS 3.0: Openjdk11 PHSA-2020-3.0-0084||Nessus||PhotonOS Local Security Checks|
|127959||GLSA-201908-10 : Oracle JDK/JRE: Multiple vulnerabilities||Nessus||Gentoo Local Security Checks|
|700659||Oracle Java SE 6 < Update 211 / 7 < Update 201 / 8 < Update 191 / 11 < Update 1 Multiple Vulnerabilities (October 2018 CPU)||Nessus Network Monitor||Web Clients|
|123345||openSUSE Security Update : java-11-openjdk (openSUSE-2019-818)||Nessus||SuSE Local Security Checks|
|118228||Oracle Java SE Multiple Vulnerabilities (October 2018 CPU)||Nessus||Windows|
|118227||Oracle Java SE Multiple Vulnerabilities (October 2018 CPU) (Unix)||Nessus||Misc.|
|118221||openSUSE Security Update : java-11-openjdk (openSUSE-2018-1205)||Nessus||SuSE Local Security Checks|