CVSS: 9.1EPSS: 1%CPEs: 196EXPL: 0CVE-2013-3829 – OpenJDK: java.util.TimeZone does not restrict setting of default time zone (Libraries, 8001029)
https://notcve.org/view.php?id=CVE-2013-3829
16 Oct 2013 — Unspecified vulnerability in the Java SE, Java SE Embedded component in Oracle Java SE Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality and integrity via unknown vectors related to Libraries. Vulnerabilidad sin especificar en los componentes Java SE, Java SE Embedded de Oracle Java SE, Java SE 7u40 y anteriores, Java SE 6u60 y anteriores, Java SE 5.0u51 y anteriores, y Java SE Embedded 7u40... • http://lists.apple.com/archives/security-announce/2013/Oct/msg00001.html •
CVSS: 10.0EPSS: 16%CPEs: 196EXPL: 0CVE-2013-5817 – Oracle Java LdapCtx Sandbox Bypass Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2013-5817
16 Oct 2013 — Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JNDI. Vulnerabilidad no especificada en Oracle Java SE v7u40 y anteriores, Java SE 6u60 y anteriores, Java SE v5.0u51 y anteriores, y Java SE Embedded v7u40 y anteriores permite a atacantes remotos afectar a la confidencialidad, integridad y disponibilidad... • http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=1019118 •
CVSS: 7.8EPSS: 1%CPEs: 196EXPL: 0CVE-2013-5783 – Oracle Java NumberFormatter and RealTimeSequencer Sandbox Bypass Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2013-5783
16 Oct 2013 — Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality and integrity via unknown vectors related to Swing. Vulnerabilidad no especificada en Oracle Java SE 7u40 y anteriores, Java SE 6u60 y anteriores, Java SE 5.0u51 y anteriores, y Java SE Embedded 7u40 y anteriores permite a atacantes remotos afectar la confidencialidad e integridad a través de vectores desco... • http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=1019137 •
CVSS: 9.8EPSS: 0%CPEs: 30EXPL: 0CVE-2013-2400 – JDK: unspecified vulnerability fixed in 7u25 (Deployment)
https://notcve.org/view.php?id=CVE-2013-2400
18 Jun 2013 — Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier allows remote attackers to affect integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2013-3744. Vulnerabilidad no especificada en el componente Java Runtime Environment (JRE) en Oracle Java SE 7 Update 21 y anteriores permite a atacantes remotos afectar a la integridad mediante vectores relacionados con Deployment, una vulnerabilidad diferente a CVE-2013-37... • http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00027.html •
CVSS: 7.0EPSS: 0%CPEs: 78EXPL: 0CVE-2013-2467 – HP Security Bulletin HPSBUX02907
https://notcve.org/view.php?id=CVE-2013-2467
18 Jun 2013 — Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 5.0 Update 45 and earlier allows local users to affect confidentiality, integrity, and availability via unknown vectors related to the Java installer. Vulnerabilidad no especificada en el componente Java Runtime Environment (JRE) en Oracle Java SE v5.0 Update 45 y anteriores permite a atacantes remotos afectar a la integridad, confidencialidad y disponibilidad mediante vectores relacionados con el instalador Java. Po... • http://marc.info/?l=bugtraq&m=137545505800971&w=2 •
CVSS: 9.8EPSS: 1%CPEs: 30EXPL: 0CVE-2013-2462 – JDK: unspecified vulnerability fixed in 7u25 (Deployment)
https://notcve.org/view.php?id=CVE-2013-2462
18 Jun 2013 — Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment. Vulnerabilidad no especificada en el componente Java Runtime Environment (JRE) en Oracle Java SE 7 Update 21 y anteriores permite a atacantes remotos afectar a la integridad, confidencialidad y disponibilidad mediante vectores relacionados con Deployment. Oracle Java SE ver... • http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00027.html •
CVSS: 9.8EPSS: 97%CPEs: 30EXPL: 2CVE-2013-2460 – Java Applet - ProviderSkeleton Insecure Invoke Method
https://notcve.org/view.php?id=CVE-2013-2460
18 Jun 2013 — Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Serviceability. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to "insufficient access checks" in the tracing compone... • https://packetstorm.news/files/id/122185 •
CVSS: 9.1EPSS: 0%CPEs: 30EXPL: 0CVE-2013-2449 – OpenJDK: GnomeFileTypeDetector path access check (Libraries, 8004288)
https://notcve.org/view.php?id=CVE-2013-2449
18 Jun 2013 — Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Libraries. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to GnomeFileTypeDetector and a missing check for read permissions for a path. La vulnerabilidad no especificada en el componente Java Runtime Enviro... • http://advisories.mageia.org/MGASA-2013-0185.html •
CVSS: 8.1EPSS: 0%CPEs: 30EXPL: 0CVE-2013-2458 – OpenJDK: Method handles (Libraries, 8009424)
https://notcve.org/view.php?id=CVE-2013-2458
18 Jun 2013 — Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality and integrity via unknown vectors related to Libraries. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via "an error related to method handles." La vulnerabilidad no especificada en el componente J... • http://advisories.mageia.org/MGASA-2013-0185.html •
CVSS: 9.8EPSS: 0%CPEs: 30EXPL: 0CVE-2013-3744 – JDK: unspecified vulnerability fixed in 7u25 (Deployment)
https://notcve.org/view.php?id=CVE-2013-3744
18 Jun 2013 — Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier allows remote attackers to affect integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2013-2400. Vulnerabilidad no especificada en el componente Java Runtime Environment (JRE) en Oracle Java SE 7 Update 21 y anteriores permite a atacantes remotos afectar a la integridad mediante vectores relacionados con Deployment, una vulnerabilidad diferente a CVE-2013-24... • http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00027.html •