Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2012-3174
HistoryJan 14, 2013 - 10:55 p.m.

CVE-2012-3174

2013-01-1422:55:00
CWE-264
[email protected]
web.nvd.nist.gov
3

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

6.4 Medium

AI Score

Confidence

Low

0.972 High

EPSS

Percentile

99.8%

JSON

Unspecified vulnerability in Oracle Java 7 before Update 11 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2013-0422. NOTE: some parties have mapped CVE-2012-3174 to an issue involving recursive use of the Reflection API, but that issue is already covered as part of CVE-2013-0422. This identifier is for a different vulnerability whose details are not public as of 20130114.

Affected configurations

NVD
Node
oraclejdkMatch1.7.0
OR
oraclejdkMatch1.7.0update1
OR
oraclejdkMatch1.7.0update10
OR
oraclejdkMatch1.7.0update2
OR
oraclejdkMatch1.7.0update3
OR
oraclejdkMatch1.7.0update4
OR
oraclejdkMatch1.7.0update5
OR
oraclejdkMatch1.7.0update6
OR
oraclejdkMatch1.7.0update7
OR
oraclejdkMatch1.7.0update9
OR
oraclejreMatch1.7.0
OR
oraclejreMatch1.7.0update1
OR
oraclejreMatch1.7.0update10
OR
oraclejreMatch1.7.0update2
OR
oraclejreMatch1.7.0update3
OR
oraclejreMatch1.7.0update4
OR
oraclejreMatch1.7.0update5
OR
oraclejreMatch1.7.0update6
OR
oraclejreMatch1.7.0update7
OR
oraclejreMatch1.7.0update9

Related

oraclelinux 1
nessus 19
openvas 22
fedora 3
ubuntucve 2
suse 2
zdi 1
redhat 3
cve 2
prion 2
cert 1
seebug 3
cvelist 2
centos 1
ubuntu 1
attackerkb 1
nvd 1
amazon 1
symantec 1
packetstorm 1
zdt 1
ibm 10
checkpoint_advisories 4
threatpost 11
securityvulns 2
veracode 2
thn 3
saint 8
metasploit 1
canvas 1
cisa_kev 1
exploitdb 1
freebsd 1
fireeye 1
securelist 1
gentoo 1
oraclelinux
oraclelinux
java-1.7.0-openjdk security update
2013-01-16 00:00:00
nessus
nessus
RHEL 5 / 6 : java-1.7.0-oracle (RHSA-2013:0156)
2013-01-15 00:00:00
CentOS 5 / 6 : java-1.7.0-openjdk (CESA-2013:0165)
2013-01-17 00:00:00
openSUSE Security Update : java-1_7_0-openjdk (openSUSE-SU-2013:0199-1)
2014-06-13 00:00:00
openvas
openvas
Oracle: Security Advisory (ELSA-2013-0165)
2015-10-06 00:00:00
Oracle Java SE Multiple Remote Code Execution Vulnerabilities - Windows
2013-01-17 00:00:00
SuSE Update for java-1_7_0-openjdk openSUSE-SU-2013:0199-1 (java-1_7_0-openjdk)
2013-03-11 00:00:00
fedora
fedora
[SECURITY] Fedora 18 Update: java-1.7.0-openjdk-1.7.0.9-2.3.4.fc18
2013-01-16 19:35:17
[SECURITY] Fedora 17 Update: java-1.7.0-openjdk-1.7.0.9-2.3.4.fc17
2013-01-16 19:42:39
[SECURITY] Fedora 16 Update: java-1.7.0-openjdk-1.7.0.9-2.3.4.fc16
2013-01-16 19:49:12
ubuntucve
ubuntucve
CVE-2012-3174
2013-01-14 00:00:00
CVE-2013-0422
2013-01-10 00:00:00
suse
suse
java-1_7_0-openjdk: update to icedtea-2.3.4 (critical)
2013-01-25 14:04:23
Security update for Java (important)
2013-03-13 00:05:30
zdi
zdi
Oracle Java Runtime Environment MethodHandle Security Manager Bypass Remote Code Execution Vulnerability
2013-02-01 00:00:00
redhat
redhat
(RHSA-2013:0156) Critical: java-1.7.0-oracle security update
2013-01-14 00:00:00
(RHSA-2013:0165) Important: java-1.7.0-openjdk security update
2013-01-16 00:00:00
(RHSA-2013:0626) Critical: java-1.7.0-ibm security update
2013-03-11 00:00:00
cve
cve
CVE-2012-3174
2013-01-14 22:55:00
CVE-2013-0422
2013-01-10 21:55:00
prion
prion
Design/Logic Flaw
2013-01-14 22:55:00
Design/Logic Flaw
2013-01-10 21:55:00
cert
cert
Java 7 fails to restrict access to privileged code
2013-01-10 00:00:00
seebug
seebug
Oracle Java Runtime Environment ๆœชๆ˜Ž่ฟœ็จ‹ไปฃ็ ๆ‰ง่กŒๆผๆดž(CVE-2012-3174)
2013-01-16 00:00:00
Oracle Java 7 JmxMBeanServer็ฑป่ฟœ็จ‹ไปฃ็ ๆ‰ง่กŒๆผๆดž
2013-01-14 00:00:00
Java Applet JMX Remote Code Execution
2014-07-01 00:00:00
cvelist
cvelist
CVE-2012-3174
2013-01-14 22:00:00
CVE-2013-0422
2013-01-10 21:23:00
centos
centos
java security update
2013-01-16 20:29:20
ubuntu
ubuntu
OpenJDK 7 vulnerabilities
2013-01-16 00:00:00
attackerkb
attackerkb
CVE-2013-0422
2013-01-10 00:00:00
nvd
nvd
CVE-2013-0422
2013-01-10 21:55:00
amazon
amazon
Important: java-1.7.0-openjdk
2013-02-03 12:35:00
symantec
symantec
Oracle Java Runtime Environment CVE-2013-0422 Multiple Remote Code Execution Vulnerabilities
2013-01-10 00:00:00
packetstorm
packetstorm
Java Applet JMX Remote Code Execution
2013-01-11 00:00:00
zdt
zdt
Java Applet JMX Remote Code Execution Vulnerability
2013-01-11 00:00:00
ibm
ibm
Security Bulletin: Security vulnerability in Oracle Java 7 impacts IBM Rational Collaborative Lifecycle Management products (CVE-2013-0422)
2018-06-17 04:42:53
Security Bulletin: Security vulnerability in Oracle Java 7 impacts IBM Rational Change (CVE-2013-0422)
2018-06-17 04:42:58
Security Bulletin: Potential security vulnerabilities in WebSphere Partner Gateway Express for the Oracle CPU February 2013.
2022-09-25 23:13:40
checkpoint_advisories
checkpoint_advisories
Oracle Java MBeanInstantiator.findClass Remote Code Execution - Ver2 (CVE-2013-0422)
2014-02-03 00:00:00
Oracle Java JmxMBeanServer Package Sandbox Breach (CVE-2013-0422)
2013-01-13 00:00:00
Oracle Java MBeanInstantiator.findClass Remote Code Execution - Ver2 (CVE-2013-0422)
2014-01-07 00:00:00
threatpost
threatpost
NBC Website Hacked, Leading Visitors to Citadel Banking Malware
2013-02-21 21:07:10
ADP-Themed Phishing Emails Lead to Blackhole Sites
2013-01-14 18:29:21
Emergency Zero-Day Patch Does Not Quiet Calls to Disable Java
2013-01-14 16:40:39
securityvulns
securityvulns
0-day vulnerability in Oracle Java is used to install maliscious software
2013-01-21 00:00:00
[SE-2012-01] Java 7 Update 11 confirmed to be vulnerable
2013-01-21 00:00:00
veracode
veracode
Authorization Bypass
2019-01-15 08:53:56
Sandbox Restrictions Bypass
2019-05-02 04:46:00
thn
thn
Oracle Patches Java Zero Day Vulnerability
2013-01-16 06:01:00
Oracle Patches Java Zero Day Vulnerability
2013-01-16 17:01:00
ICEPOL Ransomware Servers seized by Romanian Police that infected 260,000 Computers
2014-01-29 22:48:00
saint
saint
Java MBeanInstantiator.findClass and Recursive Reflection Sandbox Escape
2013-01-14 00:00:00
Java MBeanInstantiator.findClass and Recursive Reflection Sandbox Escape
2013-01-14 00:00:00
Java MBeanInstantiator.findClass and Recursive Reflection Sandbox Escape
2013-01-14 00:00:00
metasploit
metasploit
Java Applet JMX Remote Code Execution
2013-01-10 19:30:43
canvas
canvas
Immunity Canvas: JAVA_MBEANINSTANTIATOR_FINDCLASS
2013-01-10 21:55:00
cisa_kev
cisa_kev
Oracle JRE Remote Code Execution Vulnerability
2022-05-25 00:00:00
exploitdb
exploitdb
Java Applet JMX - Remote Code Execution (Metasploit) (1)
2013-01-11 00:00:00
freebsd
freebsd
java 7.x -- security manager bypass
2013-01-10 00:00:00
fireeye
fireeye
Internet Explorer 8 Exploit Found in Watering Hole Campaign Targeting Chinese Dissidents
2013-03-20 17:26:00
securelist
securelist
Investigation Report for the September 2014 Equation malware detection incident in the US
2017-11-16 10:00:34
gentoo
gentoo
Oracle JRE/JDK: Multiple vulnerabilities
2014-01-27 00:00:00

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

6.4 Medium

AI Score

Confidence

Low

0.972 High

EPSS

Percentile

99.8%

JSON
Related for NVD:CVE-2012-3174
oraclelinux1nessus19openvas22fedora3ubuntucve2suse2zdi1redhat3cve2prion2cert1seebug3cvelist2centos1ubuntu1attackerkb1nvd1amazon1symantec1packetstorm1zdt1ibm10checkpoint_advisories4threatpost11securityvulns2veracode2thn3saint8metasploit1canvas1cisa_kev1exploitdb1freebsd1fireeye1securelist1gentoo1