Lucene search

K

[email protected]CVE-2012-5076

HistoryOct 16, 2012 - 9:55 p.m.

CVE-2012-5076

2012-10-1621:55:02

[email protected]

web.nvd.nist.gov

959

In Wild

cve-2012-5076

java runtime environment

jre

oracle

java se 7

vulnerability

confidentiality

integrity

availability

jax-ws

nvd

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8.4 High

AI Score

Confidence

High

0.969 High

EPSS

Percentile

99.7%

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier allows remote attackers to affect confidentiality, integrity, and availability, related to JAX-WS.

Affected configurations

NVD

Node

oraclejreMatch1.7.0-

OR

oraclejreMatch1.7.0update1

OR

oraclejreMatch1.7.0update2

OR

oraclejreMatch1.7.0update3

OR

oraclejreMatch1.7.0update4

OR

oraclejreMatch1.7.0update5

OR

oraclejreMatch1.7.0update6

OR

oraclejreMatch1.7.0update7

Node

suselinux_enterprise_desktopMatch11sp2

CPENameOperatorVersion
oracle:jreoracle jreeq1.7.0

References

lists.opensuse.org/opensuse-security-announce/2012-10/msg00016.html

rhn.redhat.com/errata/RHSA-2012-1386.html

rhn.redhat.com/errata/RHSA-2012-1391.html

rhn.redhat.com/errata/RHSA-2012-1467.html

secunia.com/advisories/51029

secunia.com/advisories/51326

secunia.com/advisories/51390

security.gentoo.org/glsa/glsa-201406-32.xml

www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16641

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8.4 High

AI Score

Confidence

High

0.969 High

EPSS

Percentile

99.7%