Lucene search

Veracode Vulnerability DatabaseVERACODE:24034

HistoryApr 10, 2020 - 12:44 a.m.

Arbitrary Code Execution

2020-04-1000:44:25

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

EPSS

0.009

Percentile

82.3%

JSON

java is vulnerable to arbitrary code execution. The vulnerability exists as potential information leaks were found in various mutable static variables. These could be exploited in application scenarios that execute untrusted scripting code.

References

blogs.sun.com/security/entry/advance_notification_of_security_updates6

java.sun.com/j2se/1.5.0/ReleaseNotes.html

java.sun.com/javase/6/webnotes/6u17.html

secunia.com/advisories/37386

security.gentoo.org/glsa/glsa-200911-02.xml

www.mandriva.com/security/advisories?name=MDVSA-2010:084

www.redhat.com/security/updates/classification/#important

access.redhat.com/errata/RHSA-2009:1584

bugzilla.redhat.com/show_bug.cgi?id=530175

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7300

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8841

EPSS

0.009

Percentile

82.3%

JSON

Related for VERACODE:24034