CVE-2013-3006

2013-07-2311:03:19

ibm

web.nvd.nist.gov

cve-2013-3006

ibm

java

vulnerability

confidentiality

availability

integrity

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

6.2

Confidence

Low

EPSS

0.016

Percentile

87.5%

JSON

Unspecified vulnerability in the Java Runtime Environment (JRE) in IBM Java 7 before 7 SR5 allows remote attackers to affect confidentiality, availability, and integrity via unknown vectors, a different vulnerability than CVE-2013-3008.

Affected configurations

Nvd

Node

ibmjavaMatch7.0.0.0

ibmjavaMatch7.0.1.0

ibmjavaMatch7.0.2.0

ibmjavaMatch7.0.3.0

ibmjavaMatch7.0.4.0

ibmjavaMatch7.0.4.1

ibmjavaMatch7.0.4.2

VendorProductVersionCPE
ibmjava7.0.0.0cpe:2.3:a:ibm:java:7.0.0.0:*:*:*:*:*:*:*
ibmjava7.0.1.0cpe:2.3:a:ibm:java:7.0.1.0:*:*:*:*:*:*:*
ibmjava7.0.2.0cpe:2.3:a:ibm:java:7.0.2.0:*:*:*:*:*:*:*
ibmjava7.0.3.0cpe:2.3:a:ibm:java:7.0.3.0:*:*:*:*:*:*:*
ibmjava7.0.4.0cpe:2.3:a:ibm:java:7.0.4.0:*:*:*:*:*:*:*
ibmjava7.0.4.1cpe:2.3:a:ibm:java:7.0.4.1:*:*:*:*:*:*:*
ibmjava7.0.4.2cpe:2.3:a:ibm:java:7.0.4.2:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ibm	java	7.0.0.0	cpe:2.3:a:ibm:java:7.0.0.0:::::::*
ibm	java	7.0.1.0	cpe:2.3:a:ibm:java:7.0.1.0:::::::*
ibm	java	7.0.2.0	cpe:2.3:a:ibm:java:7.0.2.0:::::::*
ibm	java	7.0.3.0	cpe:2.3:a:ibm:java:7.0.3.0:::::::*
ibm	java	7.0.4.0	cpe:2.3:a:ibm:java:7.0.4.0:::::::*
ibm	java	7.0.4.1	cpe:2.3:a:ibm:java:7.0.4.1:::::::*
ibm	java	7.0.4.2	cpe:2.3:a:ibm:java:7.0.4.2:::::::*