Versio.io

CVE-2013-2422

Common vulnerabilities & exposures (CVE)

CVE databaseCVE database blogpostRelease & EoL database
 
Published at: - 17-04-2013 08:55
Last modified: - 13-05-2022 04:52
Total changes: - 2

Description

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier and 6 Update 43 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper method-invocation restrictions by the MethodUtil trampoline class, which allows remote attackers to bypass the Java sandbox.

Common Vulnerability Scoring System (CVSS)

AV:N/AC:L/Au:N/C:C/I:C/A:C
Low
Attack complexity
Network
Attack vector
High
Availability
High
Confidentiality
High
Integrity
-
Privileges required
-
Scope
-
User interaction
10.0
Base score
10.0
10.0
Exploitability score
Impact score
 

Verification logic

OR
OR
vendor=oracle AND product=jre AND version=1.7.0 AND update=update9
vendor=oracle AND product=jre AND version=1.7.0 AND update=update15
vendor=oracle AND product=jre AND version=1.7.0 AND update=update6
vendor=oracle AND product=jre AND update=update17 AND versionEndIncluding=1.7.0
vendor=oracle AND product=jre AND version=1.7.0 AND update=update3
vendor=oracle AND product=jre AND version=1.7.0 AND update=update13
vendor=oracle AND product=jre AND version=1.7.0 AND update=update10
vendor=oracle AND product=jre AND version=1.7.0 AND update=update11
vendor=oracle AND product=jre AND version=1.7.0 AND update=update2
vendor=oracle AND product=jre AND version=1.7.0 AND update=update5
vendor=oracle AND product=jre AND version=1.7.0 AND update=update7
vendor=oracle AND product=jre AND version=1.7.0 AND update=update1
vendor=oracle AND product=jre AND version=1.7.0 AND update=update4
vendor=oracle AND product=jre AND version=1.7.0
OR
vendor=oracle AND product=jdk AND version=1.7.0 AND update=update6
vendor=oracle AND product=jdk AND version=1.7.0 AND update=update5
vendor=oracle AND product=jdk AND version=1.7.0 AND update=update7
vendor=oracle AND product=jdk AND version=1.7.0 AND update=update2
vendor=oracle AND product=jdk AND version=1.7.0 AND update=update13
vendor=oracle AND product=jdk AND update=update17 AND versionEndIncluding=1.7.0
vendor=oracle AND product=jdk AND version=1.7.0 AND update=update11
vendor=oracle AND product=jdk AND version=1.7.0
vendor=oracle AND product=jdk AND version=1.7.0 AND update=update9
vendor=oracle AND product=jdk AND version=1.7.0 AND update=update15
vendor=oracle AND product=jdk AND version=1.7.0 AND update=update3
vendor=oracle AND product=jdk AND version=1.7.0 AND update=update4
vendor=oracle AND product=jdk AND version=1.7.0 AND update=update1
vendor=oracle AND product=jdk AND version=1.7.0 AND update=update10
OR
vendor=sun AND product=jre AND version=1.6.0 AND update=update_3
vendor=sun AND product=jre AND version=1.6.0 AND update=update_5
vendor=sun AND product=jre AND version=1.6.0 AND update=update_13
vendor=sun AND product=jre AND version=1.6.0 AND update=update_1
vendor=sun AND product=jre AND version=1.6.0 AND update=update_2
vendor=sun AND product=jre AND version=1.6.0 AND update=update_16
vendor=sun AND product=jre AND version=1.6.0 AND update=update_20
vendor=sun AND product=jre AND version=1.6.0 AND update=update_15
vendor=sun AND product=jre AND version=1.6.0 AND update=update_6
vendor=sun AND product=jre AND version=1.6.0 AND update=update_19
vendor=oracle AND product=jre AND version=1.6.0 AND update=update35
vendor=oracle AND product=jre AND version=1.6.0 AND update=update27
vendor=oracle AND product=jre AND version=1.6.0 AND update=update32
vendor=sun AND product=jre AND version=1.6.0 AND update=update_14
vendor=sun AND product=jre AND version=1.6.0 AND update=update_4
vendor=oracle AND product=jre AND version=1.6.0 AND update=update30
vendor=sun AND product=jre AND version=1.6.0 AND update=update_21
vendor=sun AND product=jre AND version=1.6.0 AND update=update_12
vendor=sun AND product=jre AND version=1.6.0 AND update=update_11
vendor=oracle AND product=jre AND version=1.6.0 AND update=update26
vendor=sun AND product=jre AND version=1.6.0 AND update=update_18
vendor=sun AND product=jre AND version=1.6.0 AND update=update_10
vendor=sun AND product=jre AND version=1.6.0 AND update=update_9
vendor=sun AND product=jre AND version=1.6.0
vendor=oracle AND product=jre AND version=1.6.0 AND update=update33
vendor=oracle AND product=jre AND version=1.6.0 AND update=update25
vendor=oracle AND product=jre AND version=1.6.0 AND update=update24
vendor=sun AND product=jre AND version=1.6.0 AND update=update_17
vendor=sun AND product=jre AND version=1.6.0 AND update=update_7
vendor=oracle AND product=jre AND version=1.6.0 AND update=update39
vendor=oracle AND product=jre AND version=1.6.0 AND update=update37
vendor=oracle AND product=jre AND version=1.6.0 AND update=update31
vendor=oracle AND product=jre AND version=1.6.0 AND update=update23
vendor=oracle AND product=jre AND version=1.6.0 AND update=update22
vendor=oracle AND product=jre AND update=update43 AND versionEndIncluding=1.6.0
vendor=oracle AND product=jre AND version=1.6.0 AND update=update38
vendor=oracle AND product=jre AND version=1.6.0 AND update=update29
vendor=oracle AND product=jre AND version=1.6.0 AND update=update34
vendor=oracle AND product=jre AND version=1.6.0 AND update=update41
OR
vendor=sun AND product=jdk AND version=1.6.0 AND update=update_4
vendor=sun AND product=jdk AND version=1.6.0 AND update=update_7
vendor=sun AND product=jdk AND version=1.6.0 AND update=update_19
vendor=sun AND product=jdk AND version=1.6.0 AND update=update_13
vendor=sun AND product=jdk AND version=1.6.0 AND update=update_3
vendor=sun AND product=jdk AND version=1.6.0 AND update=update_11
vendor=sun AND product=jdk AND version=1.6.0 AND update=update_10
vendor=sun AND product=jdk AND version=1.6.0 AND update=update_14
vendor=sun AND product=jdk AND version=1.6.0
vendor=sun AND product=jdk AND version=1.6.0 AND update=update_17
vendor=oracle AND product=jdk AND version=1.6.0 AND update=update29
vendor=sun AND product=jdk AND version=1.6.0 AND update=update_21
vendor=sun AND product=jdk AND version=1.6.0 AND update=update_20
vendor=sun AND product=jdk AND version=1.6.0 AND update=update_12
vendor=sun AND product=jdk AND version=1.6.0 AND update=update2
vendor=sun AND product=jdk AND version=1.6.0 AND update=update1_b06
vendor=oracle AND product=jdk AND version=1.6.0 AND update=update27
vendor=sun AND product=jdk AND version=1.6.0 AND update=update_18
vendor=sun AND product=jdk AND version=1.6.0 AND update=update1
vendor=oracle AND product=jdk AND version=1.6.0 AND update=update33
vendor=oracle AND product=jdk AND version=1.6.0 AND update=update25
vendor=oracle AND product=jdk AND version=1.6.0 AND update=update24
vendor=sun AND product=jdk AND version=1.6.0 AND update=update_16
vendor=sun AND product=jdk AND version=1.6.0 AND update=update_6
vendor=sun AND product=jdk AND version=1.6.0 AND update=update_5
vendor=oracle AND product=jdk AND version=1.6.0 AND update=update32
vendor=oracle AND product=jdk AND version=1.6.0 AND update=update31
vendor=oracle AND product=jdk AND version=1.6.0 AND update=update23
vendor=oracle AND product=jdk AND version=1.6.0 AND update=update22
vendor=sun AND product=jdk AND version=1.6.0 AND update=update_15
vendor=oracle AND product=jdk AND version=1.6.0 AND update=update30
vendor=oracle AND product=jdk AND version=1.6.0 AND update=update38
vendor=oracle AND product=jdk AND version=1.6.0 AND update=update37
vendor=oracle AND product=jdk AND version=1.6.0 AND update=update26
vendor=oracle AND product=jdk AND version=1.6.0 AND update=update35
vendor=oracle AND product=jdk AND version=1.6.0 AND update=update34
vendor=oracle AND product=jdk AND version=1.6.0 AND update=update39
vendor=oracle AND product=jdk AND version=1.6.0 AND update=update41
vendor=oracle AND product=jdk AND update=update43 AND versionEndIncluding=1.6.0
 

Reference

 


Keywords

NVD

 

CVE-2013-2422

 

CVE

 

Common vulnerabilities & exposures

 

CVSS

 

Common vulnerability scoring system

 

Security

 

Vulnerabilities

 

Exposures

 

We use cookies to ensure that we give you the best experience on our website. Read privacy policies for more information.