CVSS: 9.8EPSS: 3%CPEs: 6EXPL: 0CVE-2013-5905 – JDK: unspecified vulnerability fixed in 5.0u71, 6u71 and 7u51 (Install)
https://notcve.org/view.php?id=CVE-2013-5905
15 Jan 2014 — Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Install, a different vulnerability than CVE-2013-5906. Vulnerabilidad no especificada en Oracle Java SE 5.0u55, 6u65 y 7u45 permite a atacantes remotos afectar a la confidencialidad, integridad y disponibilidad a través de vectores desconocidos relacionados con Install, una vulnerabilidad diferente a CVE-2013-5906. Oracle Java SE ver... • http://marc.info/?l=bugtraq&m=139402697611681&w=2 •
CVSS: 9.8EPSS: 1%CPEs: 13EXPL: 0CVE-2013-5904 – JDK: unspecified vulnerability fixed in 7u51 (Deployment)
https://notcve.org/view.php?id=CVE-2013-5904
15 Jan 2014 — Unspecified vulnerability in Oracle Java SE 7u45 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment. Vulnerabilidad no especificada en Oracle Java SE 7u45 permite a atacantes remotos afectar a la confidencialidad, integridad y disponibilidad a través de vectores desconocidos relacionados con Deployment. Potential security vulnerabilities have been identified in Java Runtime Environment (JRE) and Java Developer Kit (JDK) running on HP-UX. ... • http://marc.info/?l=bugtraq&m=139402697611681&w=2 •
CVSS: 9.1EPSS: 2%CPEs: 4EXPL: 0CVE-2013-5898 – JDK: unspecified vulnerability fixed in 6u71 and 7u51 (Deployment)
https://notcve.org/view.php?id=CVE-2013-5898
15 Jan 2014 — Unspecified vulnerability in Oracle Java SE 6u65 and 7u45 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2014-0375 and CVE-2014-0403. Vulnerabilidad no especificada en Oracle Java SE 6u65 y 7u45 permite a atacantes remotos afectar a la confidencialidad e integridad a través de vectores desconocidos relacionados con Deployment, una vulnerabilidad diferente a CVE-2014-0375 y CVE-2014-0403. Oracle Java SE version 6 i... • http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00009.html •
CVSS: 8.4EPSS: 0%CPEs: 3EXPL: 0CVE-2013-5888 – JDK: unspecified vulnerability fixed in 6u71 and 7u51 (Deployment)
https://notcve.org/view.php?id=CVE-2013-5888
15 Jan 2014 — Unspecified vulnerability in Oracle Java SE 6u65 and 7u45, when running with GNOME, allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Deployment. Vulnerabilidad no especificada en oracle Java SE 6u65 y 7u45, cuando corre bajo GNOME, permite a usuarios locales afectar la confidencialidad, integridad y disponibilidad a través de vectores desconocidos relacionados con Deployment. Oracle Java SE version 6 includes the Oracle Java Runtime Environment and the... • http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00009.html •
CVSS: 9.8EPSS: 1%CPEs: 14EXPL: 0CVE-2013-5870 – JDK: multiple unspecified vulnerabilities fixed in 7u51 (JavaFX)
https://notcve.org/view.php?id=CVE-2013-5870
15 Jan 2014 — Unspecified vulnerability in Oracle Java SE 7u45 and JavaFX 2.2.45 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to JavaFX. Vulnerabilidad no especificada en Oracle Java SE 7u45 y JavaFX 2.2.45 permite a atacantes remotos afectar la confidencialidad, la integridad y la disponibilidad a través de vectores desconocidos relacionados con JavaFX. Potential security vulnerabilities have been identified in Java Runtime Environment (JRE) and Java Develope... • http://marc.info/?l=bugtraq&m=139402697611681&w=2 •
CVSS: 7.5EPSS: 5%CPEs: 3EXPL: 0CVE-2013-5887 – JDK: unspecified vulnerability fixed in 6u71 and 7u51 (Deployment)
https://notcve.org/view.php?id=CVE-2013-5887
15 Jan 2014 — Unspecified vulnerability in Oracle Java SE 6u65 and 7u45 allows remote attackers to affect availability via unknown vectors related to Deployment. Vulnerabilidad no especificada en Oracle Java SE 6u65 y 7u45 permite a atacantes remotos afectar la disponibilidad a través de vectores desconocidos relacionados con Deployment. Oracle Java SE version 6 includes the Oracle Java Runtime Environment and the Oracle Java Software Development Kit. This update fixes several vulnerabilities in the Oracle Java Runtime E... • http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00009.html •
CVSS: 9.8EPSS: 6%CPEs: 3EXPL: 0CVE-2013-5889 – JDK: unspecified vulnerability fixed in 6u71 and 7u51 (Deployment)
https://notcve.org/view.php?id=CVE-2013-5889
15 Jan 2014 — Unspecified vulnerability in Oracle Java SE 6u65 and 7u45 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2013-5902, CVE-2014-0410, CVE-2014-0415, CVE-2014-0418, and CVE-2014-0424. Vulnerabilidad no especificada en Oracle Java SE v6u65 y v7u45 permite a atacantes remotos afectar a la confidencialidad, integridad y disponibilidad a través de vectores relacionados con el despliegue, una vulnerabilidad ... • http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00009.html •
CVSS: 9.8EPSS: 2%CPEs: 4EXPL: 0CVE-2013-5910 – OpenJDK: XML canonicalizer mutable strings passed to untrusted code (Security, 8026417)
https://notcve.org/view.php?id=CVE-2013-5910
15 Jan 2014 — Unspecified vulnerability in Oracle Java SE 6u65 and 7u45, Java SE Embedded 7u45, and OpenJDK 7 allows remote attackers to affect integrity via unknown vectors related to Security. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that CanonicalizerBase.java in the XML canonicalizer allows untrusted code to access mutable byte arrays. Vulnerabilidad no especificada en Oracle Java SE 6u65 y 7u45 y Java SE Embedded 7u45, permite a atacantes remotos afe... • http://hg.openjdk.java.net/jdk7u/jdk7u/jdk/rev/07004bb53c3c •
CVSS: 9.8EPSS: 2%CPEs: 5EXPL: 0CVE-2014-0416 – OpenJDK: insecure subject principals set handling (JAAS, 8024306)
https://notcve.org/view.php?id=CVE-2014-0416
15 Jan 2014 — Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45; Java SE Embedded 7u45; and OpenJDK 7 allows remote attackers to affect integrity via vectors related to JAAS. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that the issue is related to how principals are set for the Subject class, which allows attackers to escape the sandbox using deserialization of a crafted Subject instance. Vulnerabilidad no especificada en Oracle Java SE 5.0u... • http://hg.openjdk.java.net/jdk7u/jdk7u/jdk/rev/abe1cb2d27cb •
CVSS: 10.0EPSS: 9%CPEs: 5EXPL: 0CVE-2014-0422 – OpenJDK: insufficient package access checks in the Naming component (JNDI, 8025758)
https://notcve.org/view.php?id=CVE-2014-0422
15 Jan 2014 — Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45; Java SE Embedded 7u45; and OpenJDK 7 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JNDI. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that the issue is related to missing package access checks in the Naming / JNDI component, which allows attackers to escape the sandbox. Vulnerabilidad no especificada en Oracle Java SE 5.0u5... • http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00009.html •