CVSS: 8.1EPSS: 7%CPEs: 189EXPL: 0CVE-2013-2430 – OpenJDK: JPEGImageReader state corruption (ImageIO, 8007667)
https://notcve.org/view.php?id=CVE-2013-2430
17 Apr 2013 — Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; JavaFX 2.2.7 and earlier; and OpenJDK 6 and 7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to ImageIO. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to "JPEGImageReader state corrupt... • http://blog.fuseyism.com/index.php/2013/04/22/security-icedtea-2-3-9-for-openjdk-7-released •
CVSS: 9.3EPSS: 5%CPEs: 189EXPL: 0CVE-2013-2394 – Oracle Java t2k Type1 Subroutine Indexing Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2013-2394
17 Apr 2013 — Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, 5.0 Update 41 and earlier, and JavaFX 2.2.7 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2013-2432 and CVE-2013-1491. Vulnerabilidad no especificada en Java Runtime Environment (JRE) componente de Oracle Java SE v7 Update v17 y anteriores, v6 Update v43 ... • http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03898880 •
CVSS: 10.0EPSS: 7%CPEs: 3EXPL: 0CVE-2013-0402 – Oracle Java FLV Parsing Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2013-0402
08 Mar 2013 — Heap-based buffer overflow in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier and JavaFX 2.2.7 and earlier allows remote attackers to execute arbitrary code via unspecified vectors related to JavaFX, as demonstrated by VUPEN during a Pwn2Own competition at CanSecWest 2013. Un desbordamiento de búfer basado en memoria dinámica ('heap') en Oracle Java 7 Update v17 y posiblemente otras versiones, permite a atacantes remotos ejecutar código de su elección a través de vecto... • http://h30499.www3.hp.com/t5/HP-Security-Research-Blog/Pwn2Own-2013/ba-p/5981157 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 1%CPEs: 7EXPL: 0CVE-2013-1477 – HP Security Bulletin HPSBMU02874 SSRT101184 2
https://notcve.org/view.php?id=CVE-2013-1477
02 Feb 2013 — Unspecified vulnerability in the JavaFX component in Oracle Java SE JavaFX 2.2.4 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than other CVEs listed in the February 2013 CPU. Vulnerabilidad no especificada en el componente JavaFX en Oracle Java SE JavaFX v2.2.4 y anteriores permite a atacantes remotos afectar a la confidencialidad, integridad y disponibilidad mediante vectores desconocidos, una vulnerabilidad difere... • http://marc.info/?l=bugtraq&m=136733161405818&w=2 •
CVSS: 9.8EPSS: 1%CPEs: 7EXPL: 0CVE-2013-1474 – HP Security Bulletin HPSBMU02874 SSRT101184 2
https://notcve.org/view.php?id=CVE-2013-1474
02 Feb 2013 — Unspecified vulnerability in the JavaFX component in Oracle Java SE JavaFX 2.2.4 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than other CVEs listed in the February 2013 CPU. Vulnerabilidad sin especificar en JavaFx de Oracle Java SE JavaFX v2.2.4 y anteriores que permite ataques remotos que afectan a la confidencialidad, integridad y disponibilidad por vectores sin especificar. Esta vulnerabilidad es diferente a ot... • http://marc.info/?l=bugtraq&m=136733161405818&w=2 •
CVSS: 9.8EPSS: 5%CPEs: 7EXPL: 0CVE-2012-4305 – HP Security Bulletin HPSBMU02874 SSRT101184 2
https://notcve.org/view.php?id=CVE-2012-4305
02 Feb 2013 — Unspecified vulnerability in the JavaFX component in Oracle Java SE JavaFX 2.2.4 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than other CVEs listed in the February 2013 CPU. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from a third party that the issue allows remote attackers to execute arbitrary code via vectors related to an "invalid type cast" and exposed nativ... • http://marc.info/?l=bugtraq&m=136733161405818&w=2 •
CVSS: 10.0EPSS: 1%CPEs: 7EXPL: 0CVE-2013-1472 – HP Security Bulletin HPSBMU02874 SSRT101184 2
https://notcve.org/view.php?id=CVE-2013-1472
02 Feb 2013 — Unspecified vulnerability in the JavaFX component in Oracle Java SE JavaFX 2.2.4 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than other CVEs listed in the February 2013 CPU. Vulnerabilidad sin especificar en JavaFX de Oracle Java SE JavaFX v2.2.4 y anteriores que afectan a la confidencialidad, integridad, y disponibilidad por vectores desconocidos. Esta vulnerabilidad es diferente a la otras con otros CVEs listados... • http://marc.info/?l=bugtraq&m=136733161405818&w=2 •
CVSS: 10.0EPSS: 1%CPEs: 7EXPL: 0CVE-2013-0447 – HP Security Bulletin HPSBMU02874 SSRT101184 2
https://notcve.org/view.php?id=CVE-2013-0447
02 Feb 2013 — Unspecified vulnerability in the JavaFX component in Oracle Java SE JavaFX 2.2.4 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than other CVEs listed in the February 2013 CPU. Vulnerabilidad sin especificar de JavaFX de Oracle Java SE JavaFX v2.2.4 y anteriores que permite ataques remotos que afectan a la confidencialidad, integridad, y disponibilidad por vectores desconocidos. Esta vulnerabilidad es diferente a otra... • http://marc.info/?l=bugtraq&m=136733161405818&w=2 •
CVSS: 10.0EPSS: 1%CPEs: 7EXPL: 0CVE-2013-0436 – HP Security Bulletin HPSBMU02874 SSRT101184 2
https://notcve.org/view.php?id=CVE-2013-0436
02 Feb 2013 — Unspecified vulnerability in the JavaFX component in Oracle Java SE JavaFX 2.2.4 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than other CVEs listed in the February 2013 CPU. Vulnerabilidad no especificada en el componente JavaFX en Oracle SE JavaFX v2.2.4 y anteriores permite a atacantes remotos afectar la confidencialidad, integridad y disponibilidad mediante vectores desconocidos, una vulnerabilidad diferente a o... • http://marc.info/?l=bugtraq&m=136733161405818&w=2 •
CVSS: 10.0EPSS: 5%CPEs: 7EXPL: 0CVE-2012-4301 – HP Security Bulletin HPSBMU02874 SSRT101184 2
https://notcve.org/view.php?id=CVE-2012-4301
02 Feb 2013 — Unspecified vulnerability in the JavaFX component in Oracle Java SE JavaFX 2.2.4 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than other CVEs listed in the February 2013 CPU. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from a third party that this issue allows remote attackers to execute arbitrary code via an "invalid type case" in the init method of the D3DShader... • http://marc.info/?l=bugtraq&m=136733161405818&w=2 •