CVSS: 10.0EPSS: 10%CPEs: 82EXPL: 0CVE-2012-1532 – JDK: unspecified vulnerability (Deployment)
https://notcve.org/view.php?id=CVE-2012-1532
16 Oct 2012 — Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier and 6 Update 35 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment. Una vulnerabilidad no especificada en el componente Java Runtime Environment (JRE) en Oracle Java SE v7 Update 7 y versiones anteriores, v6 Update 35 y anteriores, permite a atacantes remotos afectar la confidencialidad , la integridad y la dispon... • http://lists.opensuse.org/opensuse-security-announce/2012-10/msg00016.html •
CVSS: 9.1EPSS: 2%CPEs: 150EXPL: 0CVE-2012-5071 – OpenJDK: DescriptorSupport insufficient package access checks (JMX, 7192975)
https://notcve.org/view.php?id=CVE-2012-5071
16 Oct 2012 — Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, and 5.0 Update 36 and earlier allows remote attackers to affect confidentiality and integrity, related to JMX. Una vulnerabilidad no especificada en el componente Java Runtime Environment (JRE) en Oracle Java SE v7 Update 7 y versiones anteriores, v6 Update 35 y anteriores, v5.0 Update 36 y anteriores permite a atacantes remotos afectar la confidencialidad a través de ... • http://lists.opensuse.org/opensuse-security-announce/2012-10/msg00016.html •
CVSS: 9.1EPSS: 3%CPEs: 82EXPL: 0CVE-2012-4416 – OpenJDK: uninitialized Array JVM memory disclosure (Hotspot, 7198606)
https://notcve.org/view.php?id=CVE-2012-4416
16 Oct 2012 — Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, and 6 Update 35 and earlier, allows remote attackers to affect confidentiality and integrity via unknown vectors related to Hotspot. Una vulnerabilidad no especificada en el componente Java Runtime Environment (JRE) en Oracle Java SE v7 Update 7 y versiones anteriores, v6 Update 35 y anteriores permite a atacantes remotos afectar la confidencialidad y la integridad a través de vectores descono... • http://lists.opensuse.org/opensuse-security-announce/2012-10/msg00016.html •
CVSS: 10.0EPSS: 1%CPEs: 14EXPL: 0CVE-2012-3136 – OpenJDK: beans MethodElementHandler insufficient permission checks (beans, 7194567)
https://notcve.org/view.php?id=CVE-2012-3136
30 Aug 2012 — Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 6 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Beans, a different vulnerability than CVE-2012-1682. Vulnerabilidad no especificada en el componente Java Runtime Environment (JRE) en Oracle Java SE v7 Update v6 y anteriores, permite a atacantes remotos afectar a la confidencialidad, integridad y disponibilidad a través de vectores de... • http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00032.html •
CVSS: 10.0EPSS: 2%CPEs: 14EXPL: 0CVE-2012-1682 – Oracle Java java.beans.Statement Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2012-1682
30 Aug 2012 — Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 6 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Beans, a different vulnerability than CVE-2012-3136. NOTE: Oracle has not commented on claims from a downstream vendor that this issue is related to "XMLDecoder security issue via ClassFinder." Vulnerabilidad no especificada en el componente Java Runtime Environment (JRE) en Oracle Java... • http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00006.html •
CVSS: 9.8EPSS: 10%CPEs: 79EXPL: 1CVE-2012-0547 – Java 7 Applet - Remote Code Execution
https://notcve.org/view.php?id=CVE-2012-0547
30 Aug 2012 — Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 6 and earlier, and 6 Update 34 and earlier, has no impact and remote attack vectors involving AWT and "a security-in-depth issue that is not directly exploitable but which can be used to aggravate security vulnerabilities that can be directly exploited." NOTE: this identifier was assigned by the Oracle CNA, but CVE is not intended to cover defense-in-depth issues that are only exposed by the presence of othe... • https://www.exploit-db.com/exploits/20865 •
CVSS: 9.8EPSS: 0%CPEs: 8EXPL: 0CVE-2012-1711 – OpenJDK: improper protection of CORBA data models (CORBA, 7079902)
https://notcve.org/view.php?id=CVE-2012-1711
16 Jun 2012 — Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.2_37 and earlier allows remote attackers to affect confidentiality, integrity, and availability, related to CORBA. Vulnerablidad no especificada en el componente Java Runtime Enviroment (JRE) en Oracle Java SE v7 actualización 4 y anteriores, v6 actualización 32 y anteriores, v5 actualización 35 y anteriores, y v1.4.2_37 y anteriores pe... • http://mail.openjdk.java.net/pipermail/distro-pkg-dev/2012-June/019076.html •
CVSS: 10.0EPSS: 3%CPEs: 4EXPL: 0CVE-2012-1721 – Oracle Java WebStart Changing System Properties Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2012-1721
16 Jun 2012 — Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, and 6 update 32 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2012-1722. Vulnerabilidad no especificada en el componente Java Runtime Enviroment (JRE) en Oracle Java SE v7 actualización 4 y anteriores, y v6 actualización 32 y anteriores, permite a atacantes remotos afecta... • http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00032.html •
CVSS: 9.8EPSS: 6%CPEs: 8EXPL: 0CVE-2012-1718 – OpenJDK: CRL and certificate extensions handling improvements (Security, 7143872)
https://notcve.org/view.php?id=CVE-2012-1718
16 Jun 2012 — Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.2_37 and earlier allows remote attackers to affect availability via unknown vectors related to Security. Vulnerabilidad no especificada en el componente Java Runtime Enviroment (JRE) en Oracle Java SE v7 actualización 4 y anteriores, v6 actualización 32 y anteriores, v5 actualización 35 y anteriores, y v1.4.2_37 y anteriores que permite... • http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00020.html •
CVSS: 5.3EPSS: 2%CPEs: 72EXPL: 0CVE-2012-1724 – OpenJDK: XML parsing infinite loop (JAXP, 7157609)
https://notcve.org/view.php?id=CVE-2012-1724
16 Jun 2012 — Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, and 6 update 32 and earlier, allows remote attackers to affect availability, related to JAXP. Vulnerabilidad no especificada en el componente Java Runtime Enviroment (JRE) en Oracle Java SE v7 actualización 4 y anteriores, y v6 actualización 32 y anteriores, permite a atacantes remotos afectar la disponibilidad, relacionado con JAXP. Multiple vulnerabilities have been found in the Oracle JRE/J... • http://mail.openjdk.java.net/pipermail/distro-pkg-dev/2012-June/019076.html • CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop') •