CVSS: 10.0EPSS: 2%CPEs: 118EXPL: 0CVE-2013-5820 – OpenJDK: insufficient security checks (JAXWS, 8017505)
https://notcve.org/view.php?id=CVE-2013-5820
16 Oct 2013 — Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect integrity via vectors related to JAX-WS. Vulnerabilidad no especificada en Oracle Java SE v7u40 y anteriores, Java SE v6u60 y anteriores, y Java SE Embedded v7u40 y anteriores permite a atacantes remotos afectar la integridad a través de vectores relacionados con JAX-WS. The java-1.6.0-openjdk packages provide the OpenJDK 6 Java Runtime Environment a... • http://lists.apple.com/archives/security-announce/2013/Oct/msg00001.html •
CVSS: 10.0EPSS: 5%CPEs: 138EXPL: 0CVE-2013-5823 – OpenJDK: com.sun.org.apache.xml.internal.security.utils.UnsyncByteArrayOutputStream Denial of Service (Security, 8021290)
https://notcve.org/view.php?id=CVE-2013-5823
16 Oct 2013 — Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, JRockit R28.2.8 and earlier, JRockit R27.7.6 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect availability via unknown vectors related to Security. Vulnerabilidad no especificada en Oracle Java SE y anteriores, Java SE 6u60 y anteriores, JRockit R28.2.8 y anteriores, JRockit R27.7.6 y anteriores, y Java SE Embedded 7u40 y anteriores permite a atacantes remotos afectar la disponibilidad... • http://lists.apple.com/archives/security-announce/2013/Oct/msg00001.html •
CVSS: 10.0EPSS: 1%CPEs: 196EXPL: 0CVE-2013-5840 – OpenJDK: getDeclaringClass() information leak (Libraries, 8014349)
https://notcve.org/view.php?id=CVE-2013-5840
16 Oct 2013 — Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality via unknown vectors related to Libraries. Vulnerabilidad no especificada en Oracle Java SE v7u40 y anteriores, Java SE v6u60 y anteriores, Java SE v5.0u51 y anteriores, y Java SE Embedded v7u40 y anteriores permite a atacantes remotos afectar a la confidencialidad a través de vectores desconocidos relaciona... • http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=1018831 •
CVSS: 9.8EPSS: 7%CPEs: 216EXPL: 0CVE-2013-5802 – OpenJDK: javax.xml.transform.TransformerFactory does not properly honor XMLConstants.FEATURE_SECURE_PROCESSING (JAXP, 8012425)
https://notcve.org/view.php?id=CVE-2013-5802
16 Oct 2013 — Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JRockit R28.2.8 and earlier, JRockit R27.7.6 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAXP. Vulnerabilidad sin especificar en Oracle Java SE 7u40 y anteriores, Java SE 6u60 y anteriores, Java SE 5.0u51 y anteriores, JRockit R28.2.8 y anteriores, JRockit R27.7.6 y anteriores, y Java S... • http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=1019130 •
CVSS: 5.5EPSS: 3%CPEs: 216EXPL: 0CVE-2013-5803 – OpenJDK: insufficient checks of KDC replies (JGSS, 8014341)
https://notcve.org/view.php?id=CVE-2013-5803
16 Oct 2013 — Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JRockit R28.2.8 and earlier, JRockit R27.7.6 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect availability via vectors related to JGSS. Vulnerabilidad sin especificar en Oracle Java SE 7u40 y anteriores, Java SE 6u60 y anteriores, Java SE 5.0u51 y anteriores, JRockit R28.2.8 y anteriores, JRockit R27.7.6 y anteriores, and Java SE Embedded 7u40 y anteriores p... • http://lists.apple.com/archives/security-announce/2013/Oct/msg00001.html •
CVSS: 9.1EPSS: 2%CPEs: 199EXPL: 0CVE-2013-5804 – OpenJDK: javac does not ignore certain ignorable characters (Javadoc, 8016653)
https://notcve.org/view.php?id=CVE-2013-5804
16 Oct 2013 — Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JRockit R28.2.8 and earlier, and JRockit R27.7.6 and earlier allows remote attackers to affect confidentiality and integrity via unknown vectors related to Javadoc. Vulnerabilidad no especificada en Oracle Java SE 7u40 y anteriores, Java SE 6u60 y anteriores, Java SE 5.0u51 y anteriores, JRockit R28.2.8 y anteriores, y JRockit R27.7.6 y anteriores que permite a atacantes remotos afectar la con... • http://lists.apple.com/archives/security-announce/2013/Oct/msg00001.html •
CVSS: 10.0EPSS: 15%CPEs: 196EXPL: 0CVE-2013-5809 – OpenJDK: JPEGImageReader and JPEGImageWriter missing band size checks (2D, 8013510)
https://notcve.org/view.php?id=CVE-2013-5809
16 Oct 2013 — Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2013-5829. Vulnerabilidad no especificada en Oracle Java SE 7u40 y versiones anteriores, Java SE 6u60 y versiones anteriores, Java SE 5.0u51 y versiones anteriores y Java SE Embedded 7u40 y versiones anteriore... • http://lists.apple.com/archives/security-announce/2013/Oct/msg00001.html •
CVSS: 10.0EPSS: 7%CPEs: 196EXPL: 0CVE-2013-5814 – OpenJDK: RMIConnection stub missing permission check (CORBA, 8011157)
https://notcve.org/view.php?id=CVE-2013-5814
16 Oct 2013 — Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA. Vulnerabilidad no especificada en Oracle Java SE 7u40 y anteriores, java SE 6u60 y anteriores, Java SE 5.0u51 y anteiores y Java SE Embedded 7u40 y anteriores permite a atacantes remotos afectar la confidencialidad, integridad, y diponibilidad a tra... • http://lists.apple.com/archives/security-announce/2013/Oct/msg00001.html •
CVSS: 7.5EPSS: 3%CPEs: 216EXPL: 0CVE-2013-5825 – OpenJDK: XML parsing Denial of Service (JAXP, 8014530)
https://notcve.org/view.php?id=CVE-2013-5825
16 Oct 2013 — Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JRockit R28.2.8 and earlier, JRockit R27.7.6 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect availability via vectors related to JAXP. Vulnerabilidad no especificada en Oracle Java SE 7u40 y anteriores, Java SE 6u60 y anteriores, Java SE 5.0u51 y anteriores, JRockit R28.2.8 y anteriores, JRockit R27.7.6 y anteriores, y Java SE Embedded 7u40 y anteriores per... • http://lists.apple.com/archives/security-announce/2013/Oct/msg00001.html •
CVSS: 7.8EPSS: 1%CPEs: 196EXPL: 0CVE-2013-5849 – OpenJDK: insufficient DataFlavor security checks (AWT, 8012277)
https://notcve.org/view.php?id=CVE-2013-5849
16 Oct 2013 — Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality via vectors related to AWT. Vulnerabilidad no especificada en Oracle Java SE v7u40 y anteriores, Java SE v6u60 y anteriores, Java SE v5.0u51 y anteriores, y Java SE Embedded v7u40 y anteriores permite a atacantes remotos afectar a la confidencialidad a través de vectores relacionados con AWT. The java-1.6.0... • http://lists.apple.com/archives/security-announce/2013/Oct/msg00001.html •