Privilege Escalation

2019-05-0206:09:32

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.002 Low

EPSS

Percentile

56.3%

JSON

Java SE, Java SE Embedded and JRockit component of Oracle Java SE are vulnerable to Privilege Escalation. A remote authenticated user can exploit this flaw in the JAAS component for unauthorized creation, deletion or modification access to critical data.

CPENameOperatorVersion
java-1.8.0-openjdkeq1.8.0.45__35.b13.el6
java-1.8.0-openjdkeq1.8.0.77__0.b03.el6_7
java-1.8.0-openjdkeq1.8.0.45__28.b13.el6_6
java-1.8.0-openjdkeq1.8.0.91__1.b14.el6
java-1.8.0-openjdkeq1.8.0.20__3.b26.el6
java-1.8.0-openjdkeq1.8.0.65__0.b17.el6_7
java-1.8.0-openjdkeq1.8.0.111__0.b15.el6_8
java-1.8.0-openjdkeq1.8.0.91__0.b14.el6_7
java-1.8.0-openjdkeq1.8.0.25__3.b17.el6_6
java-1.8.0-openjdkeq1.8.0.51__3.b16.el6_7

Name	Operator	Version
java-1.8.0-openjdk	eq	1.8.0.45__35.b13.el6
java-1.8.0-openjdk	eq	1.8.0.77__0.b03.el6_7
java-1.8.0-openjdk	eq	1.8.0.45__28.b13.el6_6
java-1.8.0-openjdk	eq	1.8.0.91__1.b14.el6
java-1.8.0-openjdk	eq	1.8.0.20__3.b26.el6
java-1.8.0-openjdk	eq	1.8.0.65__0.b17.el6_7
java-1.8.0-openjdk	eq	1.8.0.111__0.b15.el6_8
java-1.8.0-openjdk	eq	1.8.0.91__0.b14.el6_7
java-1.8.0-openjdk	eq	1.8.0.25__3.b17.el6_6
java-1.8.0-openjdk	eq	1.8.0.51__3.b16.el6_7