CVE-2013-3008

2013-07-2311:03:19

[email protected]

web.nvd.nist.gov

cve-2013-3008

java

ibm

jre

vulnerability

nvd

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

6.2 Medium

AI Score

Confidence

Low

0.016 Low

EPSS

Percentile

87.5%

JSON

Unspecified vulnerability in the Java Runtime Environment (JRE) in IBM Java 7 before 7 SR5 allows remote attackers to affect confidentiality, availability, and integrity via unknown vectors, a different vulnerability than CVE-2013-3006.

Affected configurations

NVD

Node

ibmjavaMatch7.0.0.0

ibmjavaMatch7.0.1.0

ibmjavaMatch7.0.2.0

ibmjavaMatch7.0.3.0

ibmjavaMatch7.0.4.0

ibmjavaMatch7.0.4.1

ibmjavaMatch7.0.4.2

CPENameOperatorVersion
ibm:javaibm javaeq7.0.0.0
ibm:javaibm javaeq7.0.1.0
ibm:javaibm javaeq7.0.2.0
ibm:javaibm javaeq7.0.3.0
ibm:javaibm javaeq7.0.4.0
ibm:javaibm javaeq7.0.4.1
ibm:javaibm javaeq7.0.4.2

CPE	Name	Operator	Version
ibm:java	ibm java	eq	7.0.0.0
ibm:java	ibm java	eq	7.0.1.0
ibm:java	ibm java	eq	7.0.2.0
ibm:java	ibm java	eq	7.0.3.0
ibm:java	ibm java	eq	7.0.4.0
ibm:java	ibm java	eq	7.0.4.1
ibm:java	ibm java	eq	7.0.4.2