CVSS: 10.0EPSS: 3%CPEs: 101EXPL: 0CVE-2013-1479 – Oracle Java JavaFX D3DRendererDelegate Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2013-1479
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and JavaFX 2.2.4 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. Vulnerabilidad no especificada en el Java Runtime Environment (JRE) en el componente Oracle Java SE 7 hasta la actualización 11, 6 hasta la actualización 38 y JavaFX v2.2.4 y anteriores permite a atacantes remotos para afectar la confidencialidad, integridad y disponibilidad a través de vectores desconocidos. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle Java. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the JavaFX D3DRendererDelegate class. A value utilized by the class constructor is passed to a native function and is interpreted as a pointer to an object. • http://marc.info/?l=bugtraq&m=136733161405818&w=2 http://rhn.redhat.com/errata/RHSA-2013-0237.html http://www.kb.cert.org/vuls/id/858729 http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html http://www.securityfocus.com/bid/57706 http://www.us-cert.gov/cas/techalerts/TA13-032A.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16531 https://access.redhat.com/security/cve/CVE-2013-1479 https://bugzilla.redhat. •
CVSS: 10.0EPSS: 2%CPEs: 10EXPL: 0CVE-2012-5078
https://notcve.org/view.php?id=CVE-2012-5078
Unspecified vulnerability in the JavaFX component in Oracle Java SE JavaFX 2.2 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2012-5080. Vulnerabilidad no especificada en el componente JavaFX en Oracle Java SE JavaFX 2.2 y versiones anteriores permite a atacantes remotos afectar la confidencialidad, la integridad y la disponibilidad a través de vectores desconocidos, una vulnerabilidad diferente a CVE-2012-5080. • http://lists.opensuse.org/opensuse-security-announce/2012-10/msg00016.html http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html http://www.securityfocus.com/bid/56066 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16308 •
CVSS: 7.6EPSS: 0%CPEs: 11EXPL: 0CVE-2012-5080
https://notcve.org/view.php?id=CVE-2012-5080
Unspecified vulnerability in the JavaFX component in Oracle Java SE JavaFX 2.2 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2012-5078. Vulnerabilidad no especificada en el componente JavaFX en Oracle Java SE JavaFX 2.2 y versiones anteriores permite a atacantes remotos afectar la confidencialidad, la integridad y la disponibilidad a través de vectores desconocidos, una vulnerabilidad diferente a CVE-2012-5078. • http://lists.opensuse.org/opensuse-security-announce/2012-10/msg00016.html http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html http://www.securityfocus.com/bid/56068 https://exchange.xforce.ibmcloud.com/vulnerabilities/79439 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16221 •
CVSS: 5.0EPSS: 1%CPEs: 10EXPL: 0CVE-2012-5082
https://notcve.org/view.php?id=CVE-2012-5082
Unspecified vulnerability in the JavaFX component in Oracle Java SE JavaFX 2.2 and earlier allows remote attackers to affect availability via unknown vectors. Una vulnerabilidad no especificada en el componente JavaFX en Oracle Java SE, JavaFX v2.2 y anteriores permite a atacantes remotos afectar a la disponibilidad a través de vectores desconocidos. • http://lists.opensuse.org/opensuse-security-announce/2012-10/msg00016.html http://osvdb.org/86370 http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html http://www.securityfocus.com/bid/56078 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15827 •
CVSS: 10.0EPSS: 1%CPEs: 234EXPL: 0CVE-2012-1531 – JDK: unspecified vulnerability (2D)
https://notcve.org/view.php?id=CVE-2012-1531
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, 5.0 Update 36 and earlier, and 1.4.2_38 and earlier; and JavaFX 2.2 and earlier; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. Una vulnerabilidad no especificada en el componente Java Runtime Environment (JRE) en Oracle Java SE v7 Update 7 y versiones anteriores, v6 Update 35 y anteriores, v5.0 Update 36 y anteriores, v1.4.2_38 y anteriores, y JavaFX v2.2 y anteriores, permite a atacantes remotos afectar la confidencialidad , la integridad y la disponibilidad a través de vectores desconocidos relacionados con el 2D. • http://lists.opensuse.org/opensuse-security-announce/2012-10/msg00016.html http://lists.opensuse.org/opensuse-security-announce/2012-11/msg00010.html http://lists.opensuse.org/opensuse-security-announce/2012-11/msg00022.html http://marc.info/?l=bugtraq&m=135542848327757&w=2 http://marc.info/?l=bugtraq&m=135758563611658&w=2 http://rhn.redhat.com/errata/RHSA-2012-1391.html http://rhn.redhat.com/errata/RHSA-2012-1392.html http://rhn.redhat.com/errata/RHSA-2012-1465.html http:&# •