CVSS: 10.0EPSS: 1%CPEs: 173EXPL: 0CVE-2011-0864 – OpenJDK: JVM memory corruption via certain bytecode (HotSpot, 7020373)
https://notcve.org/view.php?id=CVE-2011-0864
14 Jun 2011 — Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to HotSpot. Vulnerabilidad no especificada en el componente Java Runtime Environment (JRE) en Oracle Java SE 6 Update 25 y anteriores, v5.0 Update 29 y anteriores, y v1.4.2_31 y ant... • http://lists.opensuse.org/opensuse-security-announce/2011-06/msg00003.html •
CVSS: 8.1EPSS: 3%CPEs: 48EXPL: 0CVE-2011-0872 – Gentoo Linux Security Advisory 201406-32
https://notcve.org/view.php?id=CVE-2011-0872
14 Jun 2011 — Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier allows remote attackers to affect availability via unknown vectors related to NIO. Vulnerabilidad no especificada en el componente Java Runtime Environment (JRE) Oracle Java SE 6 Update 25 y anteriores permite a atacantes remotos afectar a la disponibilidad a través de vectores desconocidos relacionados con NIO. Multiple vulnerabilities have been found in the IcedTea JDK, the worst of which co... • http://lists.opensuse.org/opensuse-security-announce/2011-06/msg00003.html •
CVSS: 10.0EPSS: 55%CPEs: 173EXPL: 0CVE-2011-0802 – Oracle Java Soundbank Decompression Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2011-0802
14 Jun 2011 — Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound, a different vulnerability than CVE-2011-0814. Vulnerabilidad no especificada en el componente Java Runtime Environment (JRE) en Oracle Java SE 6 Update 25 y anteriores, v5.0 Update 29 y anteriores, y v1.4.2_31 y anteriores, pe... • http://lists.opensuse.org/opensuse-security-announce/2011-06/msg00003.html •
CVSS: 10.0EPSS: 1%CPEs: 49EXPL: 0CVE-2011-0817 – Oracle Java IE Browser Plugin Corrupted Window Procedure Hook Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2011-0817
08 Jun 2011 — Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, when running on Windows, allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Deployment. Vulnerabilidad no especificada en el componente Java Runtime Environment (JRE) en Oracle Java SE 6 Update 25 y anteriores, cuando se ejecuta en Windows, permite a aplicaciones Java Web Start y ... • http://lists.opensuse.org/opensuse-security-announce/2011-06/msg00003.html •
CVSS: 10.0EPSS: 1%CPEs: 48EXPL: 0CVE-2011-0863 – Oracle Java Web Start Command Argument Injection Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2011-0863
08 Jun 2011 — Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Deployment. Vulnerabilidad no especificada en el componente Java Runtime Environment (JRE) en Oracle Java SE 6 Update 25 y anteriores, v5.0 Update 29 y anteriores, permite aplicaciones Java Web Start y Java applets que no son de co... • http://lists.opensuse.org/opensuse-security-announce/2011-06/msg00003.html •
CVSS: 10.0EPSS: 2%CPEs: 173EXPL: 0CVE-2011-0862 – Oracle Java ICC Screening Tag Parsing Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2011-0862
08 Jun 2011 — Multiple unspecified vulnerabilities in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allow remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. Múltiples vulnerabilidades no especificadas en el componente Java Runtime Environment (JRE) en Oracle Java SE 6 Update 25 y anteriores, v5.0 Update 29 y anteriores, y v1.4.2_31 y anteriores permite aplicaciones Java Web... • http://lists.opensuse.org/opensuse-security-announce/2011-06/msg00003.html • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.5EPSS: 9%CPEs: 161EXPL: 2CVE-2010-4476 – Oracle Java - Floating-Point Value Denial of Service
https://notcve.org/view.php?id=CVE-2010-4476
17 Feb 2011 — The Double.parseDouble method in Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier, as used in OpenJDK, Apache, JBossweb, and other products, allows remote attackers to cause a denial of service via a crafted string that triggers an infinite loop of estimations during conversion to a double-precision binary floating-point number, as demonstrated using 2.2250738585072012e-308. El método Double.parseDouble en Jav... • https://www.exploit-db.com/exploits/35304 •
CVSS: 9.8EPSS: 3%CPEs: 45EXPL: 0CVE-2010-4470 – OpenJDK JAXP untrusted component state manipulation (6927050)
https://notcve.org/view.php?id=CVE-2010-4470
17 Feb 2011 — Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23, and, and earlier allows remote attackers to affect availability via unknown vectors related to JAXP and unspecified APIs. NOTE: the previous information was obtained from the February 2011 CPU. Oracle has not commented on claims from a downstream vendor that this issue is related to "Features set on SchemaFactory not inherited by Validator." Vulnerabilidad no especificada en Java Runtime Envi... • http://lists.fedoraproject.org/pipermail/package-announce/2011-February/054115.html •
CVSS: 10.0EPSS: 2%CPEs: 161EXPL: 0CVE-2010-4473 – JDK unspecified vulnerability in Sound component
https://notcve.org/view.php?id=CVE-2010-4473
17 Feb 2011 — Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound and unspecified APIs, a different vulnerability than CVE-2010-4454 and CVE-2010-4462. Vulnerabilidad no especificada en el Java Runtime Environment (JRE) en Oracle Java SE y Java for Business 6 Update 23 y versiones... • http://lists.opensuse.org/opensuse-security-announce/2011-05/msg00004.html •
CVSS: 9.8EPSS: 1%CPEs: 45EXPL: 0CVE-2010-4422 – JDK unspecified vulnerability in Deployment component
https://notcve.org/view.php?id=CVE-2010-4422
17 Feb 2011 — Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment. Vulnerabilidad no especificada en Java Runtime Environment (JRE) en Oracle Java SE y Java for Business v6 Update v23 y anteriores permite a atacantes remotos vulnerar la confidencialidad, integridad y disponibilidad a través de vectores desconocidos relacionados... • http://marc.info/?l=bugtraq&m=134254866602253&w=2 •