CVSS: 9.8EPSS: 3%CPEs: 173EXPL: 0CVE-2011-0865 – OpenJDK: Deserialization allows creation of mutable SignedObject (Deserialization, 6618658)
https://notcve.org/view.php?id=CVE-2011-0865
08 Jun 2011 — Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect integrity via unknown vectors related to Deserialization. Vulnerabilidad no especificada en el componente Java Runtime Environment (JRE) en Oracle Java SE 6 Update 25 y anteriores, v5.0 Update 29 y anteriores, y v1.4.2_31 y anteriores permite aplicacione... • http://lists.opensuse.org/opensuse-security-announce/2011-06/msg00003.html •
CVSS: 9.8EPSS: 3%CPEs: 173EXPL: 0CVE-2011-0867 – OpenJDK: NetworkInterface information leak (Networking, 7013969)
https://notcve.org/view.php?id=CVE-2011-0867
08 Jun 2011 — Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to Networking. Vulnerabilidad no especificada en el componente Java Runtime Environment (JRE) en Oracle Java SE v6 Update 25 y anteriores, v5.0 Update 29 y anteriores, y v1.4.2_31 y anteriores permite a aplicac... • http://lists.opensuse.org/opensuse-security-announce/2011-06/msg00003.html •
CVSS: 9.8EPSS: 5%CPEs: 48EXPL: 0CVE-2011-0868 – OpenJDK: incorrect numeric type conversion in TransformHelper (2D, 7016495)
https://notcve.org/view.php?id=CVE-2011-0868
08 Jun 2011 — Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier allows remote attackers to affect confidentiality via unknown vectors related to 2D. Vulnerabilidad no especificada en el componente Java Runtime Environment (JRE) en Oracle Java SE 6 Update 25 y anteriores permite a atacantes remotos afectar a la confidencialidad a través de vectores desconocidos relacionados con el 2D. These packages provide the OpenJDK 6 Java Runtime Environment and the Ope... • http://lists.opensuse.org/opensuse-security-announce/2011-06/msg00003.html •
CVSS: 9.8EPSS: 3%CPEs: 50EXPL: 0CVE-2011-0869 – OpenJDK: unprivileged proxy settings change via SOAPConnection (SAAJ, 7013971)
https://notcve.org/view.php?id=CVE-2011-0869
08 Jun 2011 — Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 26 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to SAAJ. Vulnerabilidad no especificada en el componente Java Runtime Environment (JRE) en Oracle Java SE 6 Update 26 y anteriores permite a aplicaciones Java Web Start y Java applets no confiables afectar la confidencialidad a través de vectores desconocidos rel... • http://lists.opensuse.org/opensuse-security-announce/2011-06/msg00003.html •
CVSS: 10.0EPSS: 9%CPEs: 173EXPL: 0CVE-2011-0871 – OpenJDK: MediaTracker created Component instances with unnecessary privileges (Swing, 7020198)
https://notcve.org/view.php?id=CVE-2011-0871
08 Jun 2011 — Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Swing. Vulnerabilidad no especificada en el componente Java Runtime Environment (JRE) de Oracle Java SE v6 Update 25 y anteriores, v5.0 Update 29 y anteriores, y v1.4.2_31 y ante... • http://lists.opensuse.org/opensuse-security-announce/2011-06/msg00003.html •
CVSS: 9.8EPSS: 1%CPEs: 45EXPL: 0CVE-2010-4422 – JDK unspecified vulnerability in Deployment component
https://notcve.org/view.php?id=CVE-2010-4422
17 Feb 2011 — Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment. Vulnerabilidad no especificada en Java Runtime Environment (JRE) en Oracle Java SE y Java for Business v6 Update v23 y anteriores permite a atacantes remotos vulnerar la confidencialidad, integridad y disponibilidad a través de vectores desconocidos relacionados... • http://marc.info/?l=bugtraq&m=134254866602253&w=2 •
CVSS: 7.5EPSS: 2%CPEs: 161EXPL: 0CVE-2010-4447 – JDK unspecified vulnerability in Deployment component
https://notcve.org/view.php?id=CVE-2010-4447
17 Feb 2011 — Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to Deployment, a different vulnerability than CVE-2010-4475. Vulnerabilidad no especificada en el Java Runtime Environment (JRE) en Oracle Java SE y Java for Business 6 Update 23 y versiones anterio... • http://lists.opensuse.org/opensuse-security-announce/2011-05/msg00004.html •
CVSS: 9.1EPSS: 3%CPEs: 161EXPL: 0CVE-2010-4448 – OpenJDK DNS cache poisoning by untrusted applets (6981922)
https://notcve.org/view.php?id=CVE-2010-4448
17 Feb 2011 — Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect integrity via unknown vectors related to Networking. NOTE: the previous information was obtained from the February 2011 CPU. Oracle has not commented on claims from a downstream vendor that this issue involves "DNS cache poisoning by untrusted ap... • http://lists.fedoraproject.org/pipermail/package-announce/2011-February/054115.html •
CVSS: 9.8EPSS: 0%CPEs: 161EXPL: 0CVE-2010-4450 – OpenJDK Launcher incorrect processing of empty library path entries (6983554)
https://notcve.org/view.php?id=CVE-2010-4450
17 Feb 2011 — Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier for Solaris and Linux; 5.0 Update 27 and earlier for Solaris and Linux; and 1.4.2_29 and earlier for Solaris and Linux allows local standalone applications to affect confidentiality, integrity, and availability via unknown vectors related to Launcher. NOTE: the previous information was obtained from the February 2011 CPU. Oracle has not commented on claims from a downstream vendor ... • http://dbhole.wordpress.com/2011/02/15/icedtea-web-1-0-1-released •
CVSS: 9.8EPSS: 2%CPEs: 45EXPL: 0CVE-2010-4451 – JDK unspecified vulnerability in Install component
https://notcve.org/view.php?id=CVE-2010-4451
17 Feb 2011 — Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier for Windows, when using Java Update, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Install. Vulnerabilidad no especificada en Java Runtime Environment (JRE) en Oracle Java SE y Java for Business v6 Update v23 y anteriores para Windows, cuando se usa Java Update, permite a atacantes remotos vulnerar la confidencialidad,... • http://marc.info/?l=bugtraq&m=134254866602253&w=2 •