CVE-2013-3007

2013-07-2311:03:19

ibm

web.nvd.nist.gov

cve-2013-3007

vulnerability

java runtime environment

ibm java

remote attackers

confidentiality

availability

integrity

nvd

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

6.2

Confidence

Low

EPSS

0.016

Percentile

87.5%

JSON

Unspecified vulnerability in the Java Runtime Environment (JRE) in IBM Java 6.0.1 before 6.0.1 SR6 and 7 before 7 SR5 allows remote attackers to affect confidentiality, availability, and integrity via unknown vectors, a different vulnerability than CVE-2013-3006.

Affected configurations

Nvd

Node

ibmjavaMatch6.0.1.0

Node

ibmjavaMatch7.0.0.0

ibmjavaMatch7.0.1.0

ibmjavaMatch7.0.2.0

ibmjavaMatch7.0.3.0

ibmjavaMatch7.0.4.0

ibmjavaMatch7.0.4.1

ibmjavaMatch7.0.4.2

VendorProductVersionCPE
ibmjava6.0.1.0cpe:2.3:a:ibm:java:6.0.1.0:*:*:*:*:*:*:*
ibmjava7.0.0.0cpe:2.3:a:ibm:java:7.0.0.0:*:*:*:*:*:*:*
ibmjava7.0.1.0cpe:2.3:a:ibm:java:7.0.1.0:*:*:*:*:*:*:*
ibmjava7.0.2.0cpe:2.3:a:ibm:java:7.0.2.0:*:*:*:*:*:*:*
ibmjava7.0.3.0cpe:2.3:a:ibm:java:7.0.3.0:*:*:*:*:*:*:*
ibmjava7.0.4.0cpe:2.3:a:ibm:java:7.0.4.0:*:*:*:*:*:*:*
ibmjava7.0.4.1cpe:2.3:a:ibm:java:7.0.4.1:*:*:*:*:*:*:*
ibmjava7.0.4.2cpe:2.3:a:ibm:java:7.0.4.2:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ibm	java	6.0.1.0	cpe:2.3:a:ibm:java:6.0.1.0:::::::*
ibm	java	7.0.0.0	cpe:2.3:a:ibm:java:7.0.0.0:::::::*
ibm	java	7.0.1.0	cpe:2.3:a:ibm:java:7.0.1.0:::::::*
ibm	java	7.0.2.0	cpe:2.3:a:ibm:java:7.0.2.0:::::::*
ibm	java	7.0.3.0	cpe:2.3:a:ibm:java:7.0.3.0:::::::*
ibm	java	7.0.4.0	cpe:2.3:a:ibm:java:7.0.4.0:::::::*
ibm	java	7.0.4.1	cpe:2.3:a:ibm:java:7.0.4.1:::::::*
ibm	java	7.0.4.2	cpe:2.3:a:ibm:java:7.0.4.2:::::::*