Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2011-3557
HistoryOct 19, 2011 - 9:55 p.m.

CVE-2011-3557

2011-10-1921:55:01
[email protected]
web.nvd.nist.gov
84
cve-2011-3557
java runtime environment
oracle java se
jdk
jre
rmi
remote attackers
confidentiality
integrity
availability

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

8.6 High

AI Score

Confidence

High

0.459 Medium

EPSS

Percentile

97.4%

JSON

Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier, 1.4.2_33 and earlier, and JRockit R28.1.4 and earlier allows remote attackers to affect confidentiality, integrity, and availability, related to RMI, a different vulnerability than CVE-2011-3556.

Affected configurations

NVD
Node
sunjdkMatch1.7.0
OR
sunjreMatch1.7.0
Node
oraclejrockitRanger28.1.4
OR
oraclejrockitMatchr28.0.0
OR
oraclejrockitMatchr28.0.1
OR
oraclejrockitMatchr28.0.2
OR
oraclejrockitMatchr28.1.0
OR
oraclejrockitMatchr28.1.1
OR
oraclejrockitMatchr28.1.3
Node
sunjdkRange1.6.0update_27
OR
sunjdkMatch1.6.0
OR
sunjdkMatch1.6.0update_10
OR
sunjdkMatch1.6.0update_11
OR
sunjdkMatch1.6.0update_12
OR
sunjdkMatch1.6.0update_13
OR
sunjdkMatch1.6.0update_14
OR
sunjdkMatch1.6.0update_15
OR
sunjdkMatch1.6.0update_16
OR
sunjdkMatch1.6.0update_17
OR
sunjdkMatch1.6.0update_18
OR
sunjdkMatch1.6.0update_19
OR
sunjdkMatch1.6.0update_20
OR
sunjdkMatch1.6.0update_21
OR
sunjdkMatch1.6.0update_22
OR
sunjdkMatch1.6.0update_23
OR
sunjdkMatch1.6.0update_24
OR
sunjdkMatch1.6.0update_25
OR
sunjdkMatch1.6.0update_26
OR
sunjdkMatch1.6.0update_3
OR
sunjdkMatch1.6.0update_4
OR
sunjdkMatch1.6.0update_5
OR
sunjdkMatch1.6.0update_6
OR
sunjdkMatch1.6.0update_7
OR
sunjdkMatch1.6.0update1
OR
sunjdkMatch1.6.0update2
OR
sunjreRange1.6.0update_27
OR
sunjreMatch1.6.0
OR
sunjreMatch1.6.0update_1
OR
sunjreMatch1.6.0update_10
OR
sunjreMatch1.6.0update_11
OR
sunjreMatch1.6.0update_12
OR
sunjreMatch1.6.0update_13
OR
sunjreMatch1.6.0update_14
OR
sunjreMatch1.6.0update_15
OR
sunjreMatch1.6.0update_16
OR
sunjreMatch1.6.0update_17
OR
sunjreMatch1.6.0update_18
OR
sunjreMatch1.6.0update_19
OR
sunjreMatch1.6.0update_2
OR
sunjreMatch1.6.0update_20
OR
sunjreMatch1.6.0update_21
OR
sunjreMatch1.6.0update_22
OR
sunjreMatch1.6.0update_23
OR
sunjreMatch1.6.0update_24
OR
sunjreMatch1.6.0update_25
OR
sunjreMatch1.6.0update_26
OR
sunjreMatch1.6.0update_3
OR
sunjreMatch1.6.0update_4
OR
sunjreMatch1.6.0update_5
OR
sunjreMatch1.6.0update_6
OR
sunjreMatch1.6.0update_7
Node
sunjdkRange1.5.0update31
OR
sunjdkMatch1.5.0
OR
sunjdkMatch1.5.0update1
OR
sunjdkMatch1.5.0update10
OR
sunjdkMatch1.5.0update11
OR
sunjdkMatch1.5.0update11_b03
OR
sunjdkMatch1.5.0update12
OR
sunjdkMatch1.5.0update13
OR
sunjdkMatch1.5.0update14
OR
sunjdkMatch1.5.0update15
OR
sunjdkMatch1.5.0update16
OR
sunjdkMatch1.5.0update17
OR
sunjdkMatch1.5.0update18
OR
sunjdkMatch1.5.0update19
OR
sunjdkMatch1.5.0update2
OR
sunjdkMatch1.5.0update20
OR
sunjdkMatch1.5.0update21
OR
sunjdkMatch1.5.0update22
OR
sunjdkMatch1.5.0update23
OR
sunjdkMatch1.5.0update24
OR
sunjdkMatch1.5.0update25
OR
sunjdkMatch1.5.0update26
OR
sunjdkMatch1.5.0update27
OR
sunjdkMatch1.5.0update28
OR
sunjdkMatch1.5.0update29
OR
sunjdkMatch1.5.0update3
OR
sunjdkMatch1.5.0update4
OR
sunjdkMatch1.5.0update5
OR
sunjdkMatch1.5.0update6
OR
sunjdkMatch1.5.0update7
OR
sunjdkMatch1.5.0update7_b03
OR
sunjdkMatch1.5.0update8
OR
sunjdkMatch1.5.0update9
OR
sunjreRange1.5.0update31
OR
sunjreMatch1.5.0
OR
sunjreMatch1.5.0update1
OR
sunjreMatch1.5.0update10
OR
sunjreMatch1.5.0update11
OR
sunjreMatch1.5.0update12
OR
sunjreMatch1.5.0update13
OR
sunjreMatch1.5.0update14
OR
sunjreMatch1.5.0update15
OR
sunjreMatch1.5.0update16
OR
sunjreMatch1.5.0update17
OR
sunjreMatch1.5.0update18
OR
sunjreMatch1.5.0update19
OR
sunjreMatch1.5.0update2
OR
sunjreMatch1.5.0update20
OR
sunjreMatch1.5.0update21
OR
sunjreMatch1.5.0update22
OR
sunjreMatch1.5.0update23
OR
sunjreMatch1.5.0update24
OR
sunjreMatch1.5.0update25
OR
sunjreMatch1.5.0update26
OR
sunjreMatch1.5.0update27
OR
sunjreMatch1.5.0update29
OR
sunjreMatch1.5.0update3
OR
sunjreMatch1.5.0update4
OR
sunjreMatch1.5.0update5
OR
sunjreMatch1.5.0update6
OR
sunjreMatch1.5.0update7
OR
sunjreMatch1.5.0update8
OR
sunjreMatch1.5.0update9
Node
sunjdkRange1.4.2_33
OR
sunjdkMatch1.4.2
OR
sunjdkMatch1.4.2_1
OR
sunjdkMatch1.4.2_2
OR
sunjdkMatch1.4.2_3
OR
sunjdkMatch1.4.2_4
OR
sunjdkMatch1.4.2_5
OR
sunjdkMatch1.4.2_6
OR
sunjdkMatch1.4.2_7
OR
sunjdkMatch1.4.2_8
OR
sunjdkMatch1.4.2_9
OR
sunjdkMatch1.4.2_10
OR
sunjdkMatch1.4.2_11
OR
sunjdkMatch1.4.2_12
OR
sunjdkMatch1.4.2_13
OR
sunjdkMatch1.4.2_14
OR
sunjdkMatch1.4.2_15
OR
sunjdkMatch1.4.2_16
OR
sunjdkMatch1.4.2_17
OR
sunjdkMatch1.4.2_18
OR
sunjdkMatch1.4.2_19
OR
sunjdkMatch1.4.2_20
OR
sunjdkMatch1.4.2_21
OR
sunjdkMatch1.4.2_22
OR
sunjdkMatch1.4.2_23
OR
sunjdkMatch1.4.2_24
OR
sunjdkMatch1.4.2_25
OR
sunjdkMatch1.4.2_26
OR
sunjdkMatch1.4.2_27
OR
sunjdkMatch1.4.2_28
OR
sunjdkMatch1.4.2_29
OR
sunjdkMatch1.4.2_30
OR
sunjdkMatch1.4.2_31
OR
sunjdkMatch1.4.2_32
OR
sunjreRange1.4.2_33
OR
sunjreMatch1.4.2
OR
sunjreMatch1.4.2_1
OR
sunjreMatch1.4.2_2
OR
sunjreMatch1.4.2_3
OR
sunjreMatch1.4.2_4
OR
sunjreMatch1.4.2_5
OR
sunjreMatch1.4.2_6
OR
sunjreMatch1.4.2_7
OR
sunjreMatch1.4.2_8
OR
sunjreMatch1.4.2_9
OR
sunjreMatch1.4.2_10
OR
sunjreMatch1.4.2_11
OR
sunjreMatch1.4.2_12
OR
sunjreMatch1.4.2_13
OR
sunjreMatch1.4.2_14
OR
sunjreMatch1.4.2_15
OR
sunjreMatch1.4.2_16
OR
sunjreMatch1.4.2_17
OR
sunjreMatch1.4.2_18
OR
sunjreMatch1.4.2_19
OR
sunjreMatch1.4.2_20
OR
sunjreMatch1.4.2_21
OR
sunjreMatch1.4.2_22
OR
sunjreMatch1.4.2_23
OR
sunjreMatch1.4.2_24
OR
sunjreMatch1.4.2_25
OR
sunjreMatch1.4.2_26
OR
sunjreMatch1.4.2_27
OR
sunjreMatch1.4.2_28
OR
sunjreMatch1.4.2_29
OR
sunjreMatch1.4.2_30
OR
sunjreMatch1.4.2_31
OR
sunjreMatch1.4.2_32
CPENameOperatorVersion
sun:jdksun jdkeq1.7.0
sun:jresun jreeq1.7.0

References

Related

prion 2
nvd 2
cvelist 2
ubuntucve 2
cve 1
veracode 2
openvas 65
nessus 38
suse 6
redhat 8
cert 1
fedora 18
osv 2
amazon 1
centos 1
debian 2
oraclelinux 1
ubuntu 2
securityvulns 2
threatpost 1
ibm 1
seebug 1
gentoo 2
prion
prion
Design/Logic Flaw
2011-10-19 21:55:00
Design/Logic Flaw
2011-10-19 21:55:00
nvd
nvd
CVE-2011-3556
2011-10-19 21:55:01
CVE-2011-3557
2011-10-19 21:55:01
cvelist
cvelist
CVE-2011-3556
2011-10-19 21:00:00
CVE-2011-3557
2011-10-19 21:00:00
ubuntucve
ubuntucve
CVE-2011-3557
2011-10-19 00:00:00
CVE-2011-3556
2011-10-19 00:00:00
cve
cve
CVE-2011-3556
2011-10-19 21:55:01
veracode
veracode
Authorization Bypass
2019-05-02 04:56:00
Authorization Bypass
2019-05-02 04:56:00
openvas
openvas
Oracle Java SE Multiple Vulnerabilities - October 2011 (Windows01)
2011-11-15 00:00:00
Oracle Java SE 1.4, 5, 6, 7 Multiple Vulnerabilities (cpuoct2011) - Windows
2011-11-15 00:00:00
SUSE: Security Advisory (SUSE-SU-2012:0122-1)
2021-06-09 00:00:00
nessus
nessus
RHEL 5 : java-1.4.2-ibm (RHSA-2012:0006)
2012-01-10 00:00:00
SuSE 10 Security Update : IBM Java 1.4.2 (ZYPP Patch Number 7908) (BEAST)
2012-01-25 00:00:00
SuSE 11.1 Security Update : IBM Java 1.4.2 (SAT Patch Number 5609)
2012-02-24 00:00:00
suse
suse
Security update for IBM Java 1.4.2 (important)
2012-01-26 04:08:11
Security update for IBM Java 1.4.2 (important)
2012-02-23 22:08:13
Security update for IBM Java (important)
2011-12-02 10:08:33
redhat
redhat
(RHSA-2012:0006) Critical: java-1.4.2-ibm security update
2012-01-09 00:00:00
(RHSA-2012:0343) Moderate: java-1.4.2-ibm-sap security update
2012-02-29 00:00:00
(RHSA-2011:1380) Critical: java-1.6.0-openjdk security update
2011-10-18 00:00:00
cert
cert
IBM ServeRAID Manager exposes unauthenticated Java Remote Method Invocation (RMI) service
2020-02-12 00:00:00
fedora
fedora
[SECURITY] Fedora 16 Update: java-1.7.0-openjdk-1.7.0.1-2.0.2.fc16
2011-11-10 17:36:54
[SECURITY] Fedora 16 Update: java-1.6.0-openjdk-1.6.0.0-60.1.10.4.fc16
2011-11-05 01:27:14
[SECURITY] Fedora 16 Update: java-1.7.0-openjdk-1.7.0.3-2.1.fc16
2012-02-15 23:55:01
osv
osv
openjdk-6 - several
2011-12-01 00:00:00
openjdk-6 - several
2011-12-05 00:00:00
amazon
amazon
Critical: java-1.6.0-openjdk
2011-10-31 18:22:00
centos
centos
java security update
2011-10-19 21:07:19
debian
debian
[SECURITY] [DSA 2356-1] openjdk-6 security update
2011-12-01 20:33:15
[SECURITY] [DSA 2358-1] openjdk-6 security update
2011-12-05 19:26:27
oraclelinux
oraclelinux
java-1.6.0-openjdk security update
2011-10-18 00:00:00
ubuntu
ubuntu
OpenJDK 6 regression
2012-01-24 00:00:00
IcedTea-Web, OpenJDK 6 vulnerabilities
2011-11-16 00:00:00
securityvulns
securityvulns
APPLE-SA-2011-11-08-1 Java for Mac OS X 10.7 Update 1 and Java for Mac OS X 10.6 Update 6
2011-11-11 00:00:00
Oracle Java multiple security vulnerabilities
2011-11-11 00:00:00
threatpost
threatpost
Apple Releases New Java Updates, Fix 17 Flaws
2011-11-09 17:09:04
ibm
ibm
Potential Security Vulnerabilities With JavaTM SDKs
2018-06-17 14:01:55
seebug
seebug
IBM Rational AppScan 8.x/7.x 多个安全漏洞
2012-06-16 00:00:00
gentoo
gentoo
Oracle JRE/JDK: Multiple vulnerabilities
2011-11-05 00:00:00
IcedTea JDK: Multiple vulnerabilities
2014-06-29 00:00:00

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

8.6 High

AI Score

Confidence

High

0.459 Medium

EPSS

Percentile

97.4%

JSON
Related for CVE-2011-3557
prion2nvd2cvelist2ubuntucve2cve1veracode2openvas65nessus38suse6redhat8cert1fedora18osv2amazon1centos1debian2oraclelinux1ubuntu2securityvulns2threatpost1ibm1seebug1gentoo2