CVSS: 10.0EPSS: 1%CPEs: 82EXPL: 0CVE-2012-5086 – OpenJDK: XMLDecoder sandbox restriction bypass (Beans, 7195917)
https://notcve.org/view.php?id=CVE-2012-5086
16 Oct 2012 — Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, and 6 Update 35 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Beans. Una vulnerabilidad no especificada en el componente Java Runtime Environment (JRE) en Oracle Java SE 7 Update 7 y anteriores, y v6 Update 35 y anteriores, permite a atacantes remotos afectar la confidencialidad, integridad y disponibilidad a través d... • http://lists.opensuse.org/opensuse-security-announce/2012-10/msg00016.html •
CVSS: 10.0EPSS: 1%CPEs: 16EXPL: 0CVE-2012-5087 – OpenJDK: PropertyElementHandler insufficient access checks (Beans, 7195549)
https://notcve.org/view.php?id=CVE-2012-5087
16 Oct 2012 — Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Beans. Una vulnerabilidad no especificada en el componente Java Runtime Environment (JRE) en Oracle Java SE 7 Update 7 y anteriores permite a atacantes remotos afectar la confidencialidad, integridad y disponibilidad a través de vectores desconocidos relacionados con Beans. Multiple vul... • http://lists.opensuse.org/opensuse-security-announce/2012-10/msg00016.html •
CVSS: 9.8EPSS: 1%CPEs: 224EXPL: 0CVE-2012-5089 – OpenJDK: RMIConnectionImpl insufficient access control checks (JMX, 7198296)
https://notcve.org/view.php?id=CVE-2012-5089
16 Oct 2012 — Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, and 5.0 Update 36 and earlier allows remote attackers to affect confidentiality, integrity, and availability, related to JMX, a different vulnerability than CVE-2012-3143. Vulnerabilidad no especificada en el componente Java Runtime Environment (JRE) en Oracle Java SE 7 Update 7 y versiones anteriores, 6 Update 35 y versiones anteriores, 5.0 Update 36 y versiones anter... • http://lists.opensuse.org/opensuse-security-announce/2012-10/msg00016.html •
CVSS: 9.1EPSS: 0%CPEs: 82EXPL: 0CVE-2012-4416 – OpenJDK: uninitialized Array JVM memory disclosure (Hotspot, 7198606)
https://notcve.org/view.php?id=CVE-2012-4416
16 Oct 2012 — Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, and 6 Update 35 and earlier, allows remote attackers to affect confidentiality and integrity via unknown vectors related to Hotspot. Una vulnerabilidad no especificada en el componente Java Runtime Environment (JRE) en Oracle Java SE v7 Update 7 y versiones anteriores, v6 Update 35 y anteriores permite a atacantes remotos afectar la confidencialidad y la integridad a través de vectores descono... • http://lists.opensuse.org/opensuse-security-announce/2012-10/msg00016.html •
CVSS: 10.0EPSS: 1%CPEs: 150EXPL: 0CVE-2012-3143 – JDK: unspecified vulnerability (JMX)
https://notcve.org/view.php?id=CVE-2012-3143
16 Oct 2012 — Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, and 5.0 Update 36 and earlier allows remote attackers to affect confidentiality, integrity, and availability, related to JMX, a different vulnerability than CVE-2012-5089. Vulnerabilidad no especificada en el componente Java Runtime Environment (JRE) en Oracle Java SE 7 Update 7 y versiones anteriores, 6 Update 35 y versiones anteriores, 5.0 Update 36 y versiones anter... • http://lists.opensuse.org/opensuse-security-announce/2012-10/msg00016.html •
CVSS: 9.8EPSS: 1%CPEs: 82EXPL: 0CVE-2012-3159 – JDK: unspecified vulnerability (Deployment)
https://notcve.org/view.php?id=CVE-2012-3159
16 Oct 2012 — Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, and 6 Update 35 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2012-1533. Vulnerabilidad no especificada en el componente Java Runtime Environment (JRE) en Oracle Java SE 7 Update 7 y versiones anteriores y 6 Update 35 y versiones anteriores, permite a atacantes remotos af... • http://lists.opensuse.org/opensuse-security-announce/2012-10/msg00016.html •
CVSS: 7.5EPSS: 0%CPEs: 224EXPL: 0CVE-2012-3216 – OpenJDK: java.io.FilePermission information leak (Libraries, 6631398)
https://notcve.org/view.php?id=CVE-2012-3216
16 Oct 2012 — Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, 5.0 Update 36 and earlier, and 1.4.2_38 and earlier allows remote attackers to affect confidentiality via unknown vectors related to Libraries. Una vulnerabilidad no especificada en el componente Java Runtime Environment (JRE) en Oracle Java SE v7 Update 7 y versiones anteriores, v6 Update 35 y anteriores, v5.0 Update 36 y anteriores, v1.4.2_38 y anteriores, y JavaFX v... • http://lists.opensuse.org/opensuse-security-announce/2012-10/msg00016.html •
CVSS: 10.0EPSS: 90%CPEs: 16EXPL: 1CVE-2012-5088 – Java Applet - Method Handle Remote Code Execution
https://notcve.org/view.php?id=CVE-2012-5088
16 Oct 2012 — Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries. Una vulnerabilidad no especificada en el componente Java Runtime Environment (JRE) en Oracle Java SE 7 Update v7 y anteriores permite a atacantes remotos afectar la confidencialidad, integridad y disponibilidad a través de vectores desconocidos relacionados con las biblioteca... • https://www.exploit-db.com/exploits/24308 •
CVSS: 9.8EPSS: 1%CPEs: 79EXPL: 1CVE-2012-0547 – Java 7 Applet - Remote Code Execution
https://notcve.org/view.php?id=CVE-2012-0547
30 Aug 2012 — Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 6 and earlier, and 6 Update 34 and earlier, has no impact and remote attack vectors involving AWT and "a security-in-depth issue that is not directly exploitable but which can be used to aggravate security vulnerabilities that can be directly exploited." NOTE: this identifier was assigned by the Oracle CNA, but CVE is not intended to cover defense-in-depth issues that are only exposed by the presence of othe... • https://www.exploit-db.com/exploits/20865 •
CVSS: 10.0EPSS: 9%CPEs: 14EXPL: 0CVE-2012-1682 – Oracle Java java.beans.Statement Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2012-1682
30 Aug 2012 — Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 6 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Beans, a different vulnerability than CVE-2012-3136. NOTE: Oracle has not commented on claims from a downstream vendor that this issue is related to "XMLDecoder security issue via ClassFinder." Vulnerabilidad no especificada en el componente Java Runtime Environment (JRE) en Oracle Java... • http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00006.html •