Privilege Escalation

2019-05-1603:20:34

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.003 Low

EPSS

Percentile

71.3%

JSON

Oracle Java SE is vulnerable to privilege escalation. The vulnerability exists in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE due to an unknown part of the component Scripting. An unauthenticated attacker with network access via multiple protocols could compromise Java SE, Java SE Embedded, JRockit impacting confidentiality, integrity, and availability.

CPENameOperatorVersion
java-11-openjdkeq11.0.ea.28__7.el7
java-1.8.0-openjdkeq1.8.0.121__0.b13.el6_8
java-1.8.0-openjdkeq1.8.0.45__28.b13.el6_6
java-1.8.0-openjdkeq1.8.0.181__3.b13.el7_5
java-1.8.0-openjdkeq1.8.0.91__1.b14.el6
java-1.8.0-openjdkeq1.8.0.141__3.b16.el6_9
java-1.8.0-openjdkeq1.8.0.65__0.b17.el6_7
java-1.8.0-openjdkeq1.8.0.111__0.b15.el6_8
java-1.8.0-openjdkeq1.8.0.91__0.b14.el6_7
java-1.8.0-openjdkeq1.8.0.111__1.b15.el6_8

Name	Operator	Version
java-11-openjdk	eq	11.0.ea.28__7.el7
java-1.8.0-openjdk	eq	1.8.0.121__0.b13.el6_8
java-1.8.0-openjdk	eq	1.8.0.45__28.b13.el6_6
java-1.8.0-openjdk	eq	1.8.0.181__3.b13.el7_5
java-1.8.0-openjdk	eq	1.8.0.91__1.b14.el6
java-1.8.0-openjdk	eq	1.8.0.141__3.b16.el6_9
java-1.8.0-openjdk	eq	1.8.0.65__0.b17.el6_7
java-1.8.0-openjdk	eq	1.8.0.111__0.b15.el6_8
java-1.8.0-openjdk	eq	1.8.0.91__0.b14.el6_7
java-1.8.0-openjdk	eq	1.8.0.111__1.b15.el6_8