CVE-2012-1723
Oracle Java SE Runtime Environment (JRE) Arbitrary Code Execution Vulnerability
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
2Exploited in Wild
YesDecision
Descriptions
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.2_37 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.
Vulnerabilidad no especificada en el Java Runtime Environment (JRE), componente de Oracle Java SE 7 Update 4 y anteriores, 6 Update 32 y anteriores, 5 actualización 35 y anteriores, y v1.4.2_37 y anteriores permite a atacantes remotos afectar la confidencialidad, integridad y disponibilidad a través de vectores desconocidos relacionados con la zona activa.
Multiple vulnerabilities have been found in the Oracle JRE/JDK, allowing attackers to cause unspecified impact. Versions less than or equal to 1.6.0.45 are affected.
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE allows remote attackers to affect confidentiality, integrity, and availability via Unknown vectors related to Hotspot.
CVSS Scores
SSVC
- Decision:Act
Timeline
- 2012-03-16 CVE Reserved
- 2012-06-16 CVE Published
- 2012-07-11 First Exploit
- 2022-03-03 Exploited in Wild
- 2022-03-24 KEV Due Date
- 2025-02-10 CVE Updated
- 2025-03-18 EPSS Updated
CWE
- CWE-284: Improper Access Control
CAPEC
References (17)
| URL | Date | SRC |
|---|---|---|
| https://www.exploit-db.com/exploits/19717 | 2012-07-11 | |
| https://github.com/EthanNJC/CVE-2012-1723 | 2017-02-20 |
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Oracle Search vendor "Oracle" | Jdk Search vendor "Oracle" for product "Jdk" | <= 1.7.0 Search vendor "Oracle" for product "Jdk" and version " <= 1.7.0" | update4 |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Jre Search vendor "Oracle" for product "Jre" | <= 1.7.0 Search vendor "Oracle" for product "Jre" and version " <= 1.7.0" | update4 |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Jdk Search vendor "Oracle" for product "Jdk" | <= 1.6.0 Search vendor "Oracle" for product "Jdk" and version " <= 1.6.0" | update32 |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Jre Search vendor "Oracle" for product "Jre" | <= 1.6.0 Search vendor "Oracle" for product "Jre" and version " <= 1.6.0" | update32 |
Affected
| ||||||
| Sun Search vendor "Sun" | Jdk Search vendor "Sun" for product "Jdk" | <= 1.5.0 Search vendor "Sun" for product "Jdk" and version " <= 1.5.0" | update35 |
Affected
| ||||||
| Sun Search vendor "Sun" | Jre Search vendor "Sun" for product "Jre" | <= 1.5.0 Search vendor "Sun" for product "Jre" and version " <= 1.5.0" | update35 |
Affected
| ||||||
| Sun Search vendor "Sun" | Jdk Search vendor "Sun" for product "Jdk" | <= 1.4.2_37 Search vendor "Sun" for product "Jdk" and version " <= 1.4.2_37" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Jre Search vendor "Sun" for product "Jre" | <= 1.4.2_37 Search vendor "Sun" for product "Jre" and version " <= 1.4.2_37" | - |
Affected
| ||||||