Privilege Escalation

2019-05-0206:30:40

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.002 Low

EPSS

Percentile

56.3%

JSON

Java SE and Java SE Embedded are vulnerable to arbitrary code execution attacks. A remote user can exploit a flaw in the RMI component to gain elevated privileges. This may allow the user with lower privileges to perform restricted actions.

CPENameOperatorVersion
java-1.8.0-openjdkeq1.8.0.45__35.b13.el6
java-1.8.0-openjdkeq1.8.0.121__0.b13.el6_8
java-1.8.0-openjdkeq1.8.0.77__0.b03.el6_7
java-1.8.0-openjdkeq1.8.0.45__28.b13.el6_6
java-1.8.0-openjdkeq1.8.0.91__1.b14.el6
java-1.8.0-openjdkeq1.8.0.20__3.b26.el6
java-1.8.0-openjdkeq1.8.0.65__0.b17.el6_7
java-1.8.0-openjdkeq1.8.0.111__0.b15.el6_8
java-1.8.0-openjdkeq1.8.0.91__0.b14.el6_7
java-1.8.0-openjdkeq1.8.0.25__3.b17.el6_6

Name	Operator	Version
java-1.8.0-openjdk	eq	1.8.0.45__35.b13.el6
java-1.8.0-openjdk	eq	1.8.0.121__0.b13.el6_8
java-1.8.0-openjdk	eq	1.8.0.77__0.b03.el6_7
java-1.8.0-openjdk	eq	1.8.0.45__28.b13.el6_6
java-1.8.0-openjdk	eq	1.8.0.91__1.b14.el6
java-1.8.0-openjdk	eq	1.8.0.20__3.b26.el6
java-1.8.0-openjdk	eq	1.8.0.65__0.b17.el6_7
java-1.8.0-openjdk	eq	1.8.0.111__0.b15.el6_8
java-1.8.0-openjdk	eq	1.8.0.91__0.b14.el6_7
java-1.8.0-openjdk	eq	1.8.0.25__3.b17.el6_6