CVSS: 9.8EPSS: 3%CPEs: 8EXPL: 0CVE-2012-1718 – OpenJDK: CRL and certificate extensions handling improvements (Security, 7143872)
https://notcve.org/view.php?id=CVE-2012-1718
16 Jun 2012 — Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.2_37 and earlier allows remote attackers to affect availability via unknown vectors related to Security. Vulnerabilidad no especificada en el componente Java Runtime Enviroment (JRE) en Oracle Java SE v7 actualización 4 y anteriores, v6 actualización 32 y anteriores, v5 actualización 35 y anteriores, y v1.4.2_37 y anteriores que permite... • http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00020.html •
CVSS: 10.0EPSS: 1%CPEs: 139EXPL: 0CVE-2012-1725 – OpenJDK: insufficient invokespecial <init> verification (HotSpot, 7160757)
https://notcve.org/view.php?id=CVE-2012-1725
16 Jun 2012 — Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, and 5 update 35 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot. Vulnerabilidad no especificada en el Java Runtime Environment (JRE), componente de Oracle Java SE v7 Update 4 y anteriores, v6 Update 32 y anteriores, y v5 actualización 35 y anteriores permite a atacantes remotos afectar la... • http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00028.html •
CVSS: 7.8EPSS: 0%CPEs: 8EXPL: 0CVE-2012-1720
https://notcve.org/view.php?id=CVE-2012-1720
16 Jun 2012 — Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.2_37 and earlier, when running on Solaris, allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Networking. Vulnerabilidad no especificada en el Java Runtime Environment (JRE), componente de Oracle Java SE 7 Update 4 y anteriores, 6 Update 32 y anteriores, 5 actualización 35 y anterior... • http://marc.info/?l=bugtraq&m=134496371727681&w=2 •
CVSS: 5.3EPSS: 1%CPEs: 72EXPL: 0CVE-2012-1724 – OpenJDK: XML parsing infinite loop (JAXP, 7157609)
https://notcve.org/view.php?id=CVE-2012-1724
16 Jun 2012 — Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, and 6 update 32 and earlier, allows remote attackers to affect availability, related to JAXP. Vulnerabilidad no especificada en el componente Java Runtime Enviroment (JRE) en Oracle Java SE v7 actualización 4 y anteriores, y v6 actualización 32 y anteriores, permite a atacantes remotos afectar la disponibilidad, relacionado con JAXP. Multiple vulnerabilities have been found in the Oracle JRE/J... • http://mail.openjdk.java.net/pipermail/distro-pkg-dev/2012-June/019076.html • CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop') •
CVSS: 10.0EPSS: 96%CPEs: 8EXPL: 2CVE-2012-1723 – Oracle Java SE Runtime Environment (JRE) Arbitrary Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2012-1723
16 Jun 2012 — Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.2_37 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot. Vulnerabilidad no especificada en el Java Runtime Environment (JRE), componente de Oracle Java SE 7 Update 4 y anteriores, 6 Update 32 y anteriores, 5 actualización 35 y anteriores, y v1.4.2_37 y anteri... • https://www.exploit-db.com/exploits/19717 • CWE-284: Improper Access Control •
CVSS: 10.0EPSS: 93%CPEs: 74EXPL: 3CVE-2012-0507 – Oracle Java SE Runtime Environment (JRE) Arbitrary Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2012-0507
07 Jun 2012 — Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, and 5.0 Update 33 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Concurrency. NOTE: the previous information was obtained from the February 2012 Oracle CPU. Oracle has not commented on claims from a downstream vendor and third party researchers that this issue occurs because the AtomicReferenceA... • https://www.exploit-db.com/exploits/18679 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 9.1EPSS: 86%CPEs: 72EXPL: 1CVE-2012-0551 – Oracle GlassFish Server 3.1.1 (build 12) - Multiple Cross-Site Scripting Vulnerabilities
https://notcve.org/view.php?id=CVE-2012-0551
03 May 2012 — Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE 7 update 4 and earlier and 6 update 32 and earlier, and the GlassFish Enterprise Server component in Oracle Sun Products Suite GlassFish Enterprise Server 3.1.1, allows remote attackers to affect confidentiality and integrity via unknown vectors related to Web Container or Deployment. Vulnerabilidad no especificada en el componente GlassFish Enterprise Server en Oracle Sun Products Suite GlassFish Enterprise Server v3.1.1 perm... • https://www.exploit-db.com/exploits/18764 •
CVSS: 9.1EPSS: 4%CPEs: 99EXPL: 0CVE-2011-3563 – OpenJDK: JavaSound incorrect bounds check (Sound, 7088367)
https://notcve.org/view.php?id=CVE-2011-3563
15 Feb 2012 — Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, 5.0 Update 33 and earlier, and 1.4.2_35 and earlier allows remote attackers to affect confidentiality and availability via unknown vectors related to Sound. Vulnerabilidad no especificada en el Java Runtime Environment (JRE), componente de Oracle Java SE 7 y versiones anteriores de actualizaciones 2, 6 Update 30 y anteriores, 5.0 Update 33 y anteriores, v1.4.2_35 y ant... • http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00009.html •
CVSS: 9.8EPSS: 1%CPEs: 63EXPL: 0CVE-2012-0504 – Gentoo Linux Security Advisory 201401-30
https://notcve.org/view.php?id=CVE-2012-0504
15 Feb 2012 — Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, and 6 Update 30 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Install and the Java Update mechanism. Vulnerabilidad no especificada en el componente Java Runtime Environment (JRE) en Oracle Java SE v7 Update 2 y anteriores v6 Update 30 y anteriores, permite a atacantes remotos afectar a la confidencialidad, integridad... • http://marc.info/?l=bugtraq&m=133364885411663&w=2 •
CVSS: 10.0EPSS: 2%CPEs: 31EXPL: 0CVE-2012-0497 – OpenJDK: insufficient checking of the graphics rendering object (2D, 7112642)
https://notcve.org/view.php?id=CVE-2012-0497
15 Feb 2012 — Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, and 6 Update 30 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. Vulnerabilidad no especificada en el Java Runtime Environment (JRE), componente de Oracle Java SE 7 Update 2 y anteriores, y 6 Update 30 y anteriores, permite a atacantes remotos afectar la confidencialidad, integridad y disponibilidad a través de vecto... • http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00010.html •