CVE-2011-3544

Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7 and 6 Update 27 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Scripting.

CVSS v3 9.8 CRITICAL
CVSS v2.0 10.0 HIGH

9.8^/10

CVSS v3 : CRITICAL

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

10.0^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 10.0 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00049.html	Mailing List Third Party Advisory
http://marc.info/?l=bugtraq&m=132750579901589&w=2	Mailing List
http://marc.info/?l=bugtraq&m=132750579901589&w=2	Mailing List
http://marc.info/?l=bugtraq&m=132750579901589&w=2	Mailing List
http://marc.info/?l=bugtraq&m=132750579901589&w=2	Mailing List
http://marc.info/?l=bugtraq&m=134254866602253&w=2	Mailing List
http://marc.info/?l=bugtraq&m=134254957702612&w=2	Mailing List
http://marc.info/?l=bugtraq&m=134254957702612&w=2	Mailing List
http://marc.info/?l=bugtraq&m=134254957702612&w=2	Mailing List
http://marc.info/?l=bugtraq&m=134254957702612&w=2	Mailing List
http://rhn.redhat.com/errata/RHSA-2013-1455.html	Third Party Advisory
http://secunia.com/advisories/48308	Broken Link
http://security.gentoo.org/glsa/glsa-201406-32.xml	Third Party Advisory
http://www.ibm.com/developerworks/java/jdk/alerts/	Product
http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html	Patch Vendor Advisory
http://www.redhat.com/support/errata/RHSA-2011-1384.html	Broken Link
http://www.securityfocus.com/bid/50218	Broken Link Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1026215	Broken Link Third Party Advisory VDB Entry
http://www.ubuntu.com/usn/USN-1263-1	Third Party Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/70849	Third Party Advisory VDB Entry
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13947	Broken Link
http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00049.html	Mailing List Third Party Advisory
http://marc.info/?l=bugtraq&m=132750579901589&w=2	Mailing List
http://marc.info/?l=bugtraq&m=132750579901589&w=2	Mailing List
http://marc.info/?l=bugtraq&m=132750579901589&w=2	Mailing List
http://marc.info/?l=bugtraq&m=132750579901589&w=2	Mailing List
http://marc.info/?l=bugtraq&m=134254866602253&w=2	Mailing List
http://marc.info/?l=bugtraq&m=134254957702612&w=2	Mailing List
http://marc.info/?l=bugtraq&m=134254957702612&w=2	Mailing List
http://marc.info/?l=bugtraq&m=134254957702612&w=2	Mailing List
http://marc.info/?l=bugtraq&m=134254957702612&w=2	Mailing List
http://rhn.redhat.com/errata/RHSA-2013-1455.html	Third Party Advisory
http://secunia.com/advisories/48308	Broken Link
http://security.gentoo.org/glsa/glsa-201406-32.xml	Third Party Advisory
http://www.ibm.com/developerworks/java/jdk/alerts/	Product
http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html	Patch Vendor Advisory
http://www.redhat.com/support/errata/RHSA-2011-1384.html	Broken Link
http://www.securityfocus.com/bid/50218	Broken Link Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1026215	Broken Link Third Party Advisory VDB Entry
http://www.ubuntu.com/usn/USN-1263-1	Third Party Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/70849	Third Party Advisory VDB Entry
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13947	Broken Link

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:oracle:jdk::::::::
	cpe:2.3:a:oracle:jdk:1.6.0:-::::::
	cpe:2.3:a:oracle:jdk:1.6.0:update1::::::
	cpe:2.3:a:oracle:jdk:1.6.0:update10::::::
	cpe:2.3:a:oracle:jdk:1.6.0:update11::::::
	cpe:2.3:a:oracle:jdk:1.6.0:update12::::::
	cpe:2.3:a:oracle:jdk:1.6.0:update13::::::
	cpe:2.3:a:oracle:jdk:1.6.0:update14::::::
	cpe:2.3:a:oracle:jdk:1.6.0:update15::::::
	cpe:2.3:a:oracle:jdk:1.6.0:update16::::::
	cpe:2.3:a:oracle:jdk:1.6.0:update17::::::
	cpe:2.3:a:oracle:jdk:1.6.0:update18::::::
	cpe:2.3:a:oracle:jdk:1.6.0:update19::::::
	cpe:2.3:a:oracle:jdk:1.6.0:update2::::::
	cpe:2.3:a:oracle:jdk:1.6.0:update20::::::
	cpe:2.3:a:oracle:jdk:1.6.0:update21::::::
	cpe:2.3:a:oracle:jdk:1.6.0:update22::::::
	cpe:2.3:a:oracle:jdk:1.6.0:update23::::::
	cpe:2.3:a:oracle:jdk:1.6.0:update24::::::
	cpe:2.3:a:oracle:jdk:1.6.0:update25::::::
	cpe:2.3:a:oracle:jdk:1.6.0:update26::::::
	cpe:2.3:a:oracle:jdk:1.7.0:-::::::
	cpe:2.3:a:oracle:jdk:1.7.0:update1::::::
	cpe:2.3:a:oracle:jdk:1.7.0:update10::::::
	cpe:2.3:a:oracle:jdk:1.7.0:update11::::::
	cpe:2.3:a:oracle:jdk:1.7.0:update13::::::
	cpe:2.3:a:oracle:jdk:1.7.0:update15::::::
	cpe:2.3:a:oracle:jdk:1.7.0:update17::::::
	cpe:2.3:a:oracle:jdk:1.7.0:update2::::::
	cpe:2.3:a:oracle:jdk:1.7.0:update21::::::
	cpe:2.3:a:oracle:jdk:1.7.0:update25::::::
	cpe:2.3:a:oracle:jdk:1.7.0:update3::::::
	cpe:2.3:a:oracle:jdk:1.7.0:update4::::::
	cpe:2.3:a:oracle:jdk:1.7.0:update5::::::
	cpe:2.3:a:oracle:jdk:1.7.0:update6::::::
	cpe:2.3:a:oracle:jdk:1.7.0:update7::::::
	cpe:2.3:a:oracle:jdk:1.7.0:update7_b32::::::
	cpe:2.3:a:oracle:jdk:1.7.0:update9::::::
	cpe:2.3:a:oracle:jdk:1.7.0:update9_b31::::::
	cpe:2.3:a:oracle:jdk:1.7.0:update9_b32::::::
	cpe:2.3:a:oracle:jre::::::::
	cpe:2.3:a:oracle:jre:1.6.0:-::::::
	cpe:2.3:a:oracle:jre:1.6.0:update1::::::
	cpe:2.3:a:oracle:jre:1.6.0:update11::::::
	cpe:2.3:a:oracle:jre:1.6.0:update12::::::
	cpe:2.3:a:oracle:jre:1.6.0:update13::::::
	cpe:2.3:a:oracle:jre:1.6.0:update14::::::
	cpe:2.3:a:oracle:jre:1.6.0:update15::::::
	cpe:2.3:a:oracle:jre:1.6.0:update16::::::
	cpe:2.3:a:oracle:jre:1.6.0:update17::::::
	cpe:2.3:a:oracle:jre:1.6.0:update18::::::
	cpe:2.3:a:oracle:jre:1.6.0:update19::::::
	cpe:2.3:a:oracle:jre:1.6.0:update2::::::
	cpe:2.3:a:oracle:jre:1.6.0:update20::::::
	cpe:2.3:a:oracle:jre:1.6.0:update21::::::
	cpe:2.3:a:oracle:jre:1.6.0:update22::::::
	cpe:2.3:a:oracle:jre:1.6.0:update23::::::
	cpe:2.3:a:oracle:jre:1.6.0:update24::::::
	cpe:2.3:a:oracle:jre:1.6.0:update25::::::
	cpe:2.3:a:oracle:jre:1.6.0:update26::::::
	cpe:2.3:a:oracle:jre:1.6.0:update3::::::
	cpe:2.3:a:oracle:jre:1.6.0:update4::::::
	cpe:2.3:a:oracle:jre:1.6.0:update5::::::
	cpe:2.3:a:oracle:jre:1.6.0:update6::::::
cpe:2.3:a:oracle:jre:1.6.0:update7::::::
cpe:2.3:a:oracle:jre:1.6.0:update8::::::
cpe:2.3:a:oracle:jre:1.6.0:update9::::::
cpe:2.3:a:oracle:jre:1.7.0:-::::::
cpe:2.3:a:oracle:jre:1.7.0:update1::::::
cpe:2.3:a:oracle:jre:1.7.0:update10::::::
cpe:2.3:a:oracle:jre:1.7.0:update10_b31::::::
cpe:2.3:a:oracle:jre:1.7.0:update11::::::
cpe:2.3:a:oracle:jre:1.7.0:update13::::::
cpe:2.3:a:oracle:jre:1.7.0:update15::::::
cpe:2.3:a:oracle:jre:1.7.0:update17::::::
cpe:2.3:a:oracle:jre:1.7.0:update17_b31::::::
cpe:2.3:a:oracle:jre:1.7.0:update17_b32::::::
cpe:2.3:a:oracle:jre:1.7.0:update2::::::
cpe:2.3:a:oracle:jre:1.7.0:update21::::::
cpe:2.3:a:oracle:jre:1.7.0:update21_b31::::::
cpe:2.3:a:oracle:jre:1.7.0:update25::::::
cpe:2.3:a:oracle:jre:1.7.0:update25_b33::::::
cpe:2.3:a:oracle:jre:1.7.0:update25_b34::::::
cpe:2.3:a:oracle:jre:1.7.0:update25_b35::::::
cpe:2.3:a:oracle:jre:1.7.0:update3::::::
cpe:2.3:a:oracle:jre:1.7.0:update4::::::
cpe:2.3:a:oracle:jre:1.7.0:update5::::::
cpe:2.3:a:oracle:jre:1.7.0:update6::::::
cpe:2.3:a:oracle:jre:1.7.0:update7::::::
cpe:2.3:a:oracle:jre:1.7.0:update7_b32::::::
cpe:2.3:a:oracle:jre:1.7.0:update9::::::

Configuration 2 (hide)

OR	cpe:2.3:o:canonical:ubuntu_linux:10.04::::-:::
	cpe:2.3:o:canonical:ubuntu_linux:10.10:::::::*
	cpe:2.3:o:canonical:ubuntu_linux:11.04:::::::*
	cpe:2.3:o:canonical:ubuntu_linux:11.10:::::::*

Configuration 3 (hide)

cpe:2.3:a:redhat:satellite_with_embedded_oracle:5.4:*:*:*:*:*:*:*

Configuration 4 (hide)

OR	cpe:2.3:o:suse:linux_enterprise_java:10:sp4::::::
	cpe:2.3:o:suse:linux_enterprise_server:10:sp4:::-:::*

History

10 Feb 2025, 20:15

Type	Values Removed	Values Added
CWE		CWE-284

21 Nov 2024, 01:30

24 Jul 2024, 14:29

Information

Published : 2011-10-19 21:55

Updated : 2025-04-11 00:51

NVD link : CVE-2011-3544

Mitre link : CVE-2011-3544

CVE.ORG link : CVE-2011-3544

JSON object : View

Products Affected

oracle

suse

linux_enterprise_server
linux_enterprise_java

canonical

ubuntu_linux

redhat

satellite_with_embedded_oracle

CWE

NVD-CWE-noinfo CWE-284

Improper Access Control

{"id": "CVE-2011-3544", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 10.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}, {"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}]}, "published": "2011-10-19T21:55:01.097", "references": [{"url": "http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00049.html", "tags": ["Mailing List", "Third Party Advisory"], "source": "secalert_us@oracle.com"}, {"url": "http://marc.info/?l=bugtraq&m=132750579901589&w=2", "tags": ["Mailing List"], "source": "secalert_us@oracle.com"}, {"url": "http://marc.info/?l=bugtraq&m=132750579901589&w=2", "tags": ["Mailing List"], "source": "secalert_us@oracle.com"}, {"url": "http://marc.info/?l=bugtraq&m=132750579901589&w=2", "tags": ["Mailing List"], "source": "secalert_us@oracle.com"}, {"url": "http://marc.info/?l=bugtraq&m=132750579901589&w=2", "tags": ["Mailing List"], "source": "secalert_us@oracle.com"}, {"url": "http://marc.info/?l=bugtraq&m=134254866602253&w=2", "tags": ["Mailing List"], "source": "secalert_us@oracle.com"}, {"url": "http://marc.info/?l=bugtraq&m=134254957702612&w=2", "tags": ["Mailing List"], "source": "secalert_us@oracle.com"}, {"url": "http://marc.info/?l=bugtraq&m=134254957702612&w=2", "tags": ["Mailing List"], "source": "secalert_us@oracle.com"}, {"url": "http://marc.info/?l=bugtraq&m=134254957702612&w=2", "tags": ["Mailing List"], "source": "secalert_us@oracle.com"}, {"url": "http://marc.info/?l=bugtraq&m=134254957702612&w=2", "tags": ["Mailing List"], "source": "secalert_us@oracle.com"}, {"url": "http://rhn.redhat.com/errata/RHSA-2013-1455.html", "tags": ["Third Party Advisory"], "source": "secalert_us@oracle.com"}, {"url": "http://secunia.com/advisories/48308", "tags": ["Broken Link"], "source": "secalert_us@oracle.com"}, {"url": "http://security.gentoo.org/glsa/glsa-201406-32.xml", "tags": ["Third Party Advisory"], "source": "secalert_us@oracle.com"}, {"url": "http://www.ibm.com/developerworks/java/jdk/alerts/", "tags": ["Product"], "source": "secalert_us@oracle.com"}, {"url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html", "tags": ["Patch", "Vendor Advisory"], "source": "secalert_us@oracle.com"}, {"url": "http://www.redhat.com/support/errata/RHSA-2011-1384.html", "tags": ["Broken Link"], "source": "secalert_us@oracle.com"}, {"url": "http://www.securityfocus.com/bid/50218", "tags": ["Broken Link", "Third Party Advisory", "VDB Entry"], "source": "secalert_us@oracle.com"}, {"url": "http://www.securitytracker.com/id?1026215", "tags": ["Broken Link", "Third Party Advisory", "VDB Entry"], "source": "secalert_us@oracle.com"}, {"url": "http://www.ubuntu.com/usn/USN-1263-1", "tags": ["Third Party Advisory"], "source": "secalert_us@oracle.com"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/70849", "tags": ["Third Party Advisory", "VDB Entry"], "source": "secalert_us@oracle.com"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13947", "tags": ["Broken Link"], "source": "secalert_us@oracle.com"}, {"url": "http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00049.html", "tags": ["Mailing List", "Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://marc.info/?l=bugtraq&m=132750579901589&w=2", "tags": ["Mailing List"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://marc.info/?l=bugtraq&m=132750579901589&w=2", "tags": ["Mailing List"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://marc.info/?l=bugtraq&m=132750579901589&w=2", "tags": ["Mailing List"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://marc.info/?l=bugtraq&m=132750579901589&w=2", "tags": ["Mailing List"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://marc.info/?l=bugtraq&m=134254866602253&w=2", "tags": ["Mailing List"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://marc.info/?l=bugtraq&m=134254957702612&w=2", "tags": ["Mailing List"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://marc.info/?l=bugtraq&m=134254957702612&w=2", "tags": ["Mailing List"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://marc.info/?l=bugtraq&m=134254957702612&w=2", "tags": ["Mailing List"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://marc.info/?l=bugtraq&m=134254957702612&w=2", "tags": ["Mailing List"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://rhn.redhat.com/errata/RHSA-2013-1455.html", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/48308", "tags": ["Broken Link"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://security.gentoo.org/glsa/glsa-201406-32.xml", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.ibm.com/developerworks/java/jdk/alerts/", "tags": ["Product"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html", "tags": ["Patch", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.redhat.com/support/errata/RHSA-2011-1384.html", "tags": ["Broken Link"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/50218", "tags": ["Broken Link", "Third Party Advisory", "VDB Entry"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securitytracker.com/id?1026215", "tags": ["Broken Link", "Third Party Advisory", "VDB Entry"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.ubuntu.com/usn/USN-1263-1", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/70849", "tags": ["Third Party Advisory", "VDB Entry"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13947", "tags": ["Broken Link"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Deferred", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}, {"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "description": [{"lang": "en", "value": "CWE-284"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7 and 6 Update 27 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Scripting."}, {"lang": "es", "value": "Vulnerabilidad no especificada en el componente de Java Runtime Environment en Oracle Java SE JDK y JRE v7 y v6 Update 27 y anteriores permite a aplicaciones remotas Java Web Start y applets Java no confiables afectar a la confidencialidad, integridad y disponibilidad a trav\u00e9s de vectores desconocidos relacionados con secuencias de comandos."}], "lastModified": "2025-04-11T00:51:21.963", "cisaActionDue": "2022-03-24", "cisaExploitAdd": "2022-03-03", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:oracle:jdk:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FD1AF818-452D-46FE-BD02-05E2E94DDE30", "versionEndExcluding": "1.6.0"}, {"criteria": "cpe:2.3:a:oracle:jdk:1.6.0:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4A420DA5-1346-446B-8D23-E1E6DDBE527E"}, {"criteria": "cpe:2.3:a:oracle:jdk:1.6.0:update1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B8CA8719-7ABE-4279-B49E-C414794A4FE1"}, {"criteria": "cpe:2.3:a:oracle:jdk:1.6.0:update10:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DC92B7EC-849F-4255-9D55-43681B8DADC4"}, {"criteria": "cpe:2.3:a:oracle:jdk:1.6.0:update11:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2ABC1045-7D3D-4A14-B994-7E60A4BB4C9C"}, {"criteria": "cpe:2.3:a:oracle:jdk:1.6.0:update12:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1F3C1E65-929A-4468-8584-F086E6E59839"}, {"criteria": "cpe:2.3:a:oracle:jdk:1.6.0:update13:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "42C95C1D-0C2E-4733-AB1B-65650D88995D"}, {"criteria": "cpe:2.3:a:oracle:jdk:1.6.0:update14:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "47A9F499-D1E3-41BD-AC18-E8D3D3231C12"}, {"criteria": "cpe:2.3:a:oracle:jdk:1.6.0:update15:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D45B0D7E-BA0F-4AAA-A7BA-2ADA4CC90D94"}, {"criteria": "cpe:2.3:a:oracle:jdk:1.6.0:update16:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D58A3E4F-2409-440A-891E-0B84D79AB480"}, {"criteria": "cpe:2.3:a:oracle:jdk:1.6.0:update17:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3FC2226B-CFEF-48A4-83EA-1F59F4AF7528"}, {"criteria": "cpe:2.3:a:oracle:jdk:1.6.0:update18:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F29DC78F-4D02-47B4-A955-32080B22356C"}, {"criteria": "cpe:2.3:a:oracle:jdk:1.6.0:update19:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "81A4204E-6F50-45FB-A343-7A30C0CD6D3D"}, {"criteria": "cpe:2.3:a:oracle:jdk:1.6.0:update2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D6E07069-D6EE-4D44-94A6-CDCA4A50E6F9"}, {"criteria": "cpe:2.3:a:oracle:jdk:1.6.0:update20:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4B151882-47C0-400E-BBAB-A949E6140C86"}, {"criteria": "cpe:2.3:a:oracle:jdk:1.6.0:update21:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6DB4F19E-DFC4-42F4-87B9-32FB1C496649"}, {"criteria": "cpe:2.3:a:oracle:jdk:1.6.0:update22:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "301E96A3-AD2F-48F3-9166-571BD6F9FAE3"}, {"criteria": "cpe:2.3:a:oracle:jdk:1.6.0:update23:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6C9215D9-DB64-4CEE-85E6-E247035EFB09"}, {"criteria": "cpe:2.3:a:oracle:jdk:1.6.0:update24:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "352509FE-54D9-4A59-98B7-96E5E98BC2CF"}, {"criteria": "cpe:2.3:a:oracle:jdk:1.6.0:update25:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C3EC13D3-4CE7-459C-A7D7-7D38C1284720"}, {"criteria": "cpe:2.3:a:oracle:jdk:1.6.0:update26:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8CDCD1B4-C5F3-4188-B05F-23922F7DE517"}, {"criteria": "cpe:2.3:a:oracle:jdk:1.7.0:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "ACABC935-5DD6-4F85-992E-70AD517EF41D"}, {"criteria": "cpe:2.3:a:oracle:jdk:1.7.0:update1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6152036D-6421-4AE4-9223-766FE07B5A44"}, {"criteria": "cpe:2.3:a:oracle:jdk:1.7.0:update10:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FE8B0935-6637-413D-B896-28E0ED7F2CEC"}, {"criteria": "cpe:2.3:a:oracle:jdk:1.7.0:update11:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "30B480BC-0886-4B19-B0A5-57B531077F40"}, {"criteria": "cpe:2.3:a:oracle:jdk:1.7.0:update13:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7FA1990D-BBC2-429C-872C-6150459516B1"}, {"criteria": "cpe:2.3:a:oracle:jdk:1.7.0:update15:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8DC2887E-610B-42FE-9A96-1E2F01BF17A3"}, {"criteria": "cpe:2.3:a:oracle:jdk:1.7.0:update17:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "130849CD-A581-4FE6-B2AA-99134F16FE65"}, {"criteria": "cpe:2.3:a:oracle:jdk:1.7.0:update2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D375CECB-405C-4E18-A7E8-9C5A2F97BD69"}, {"criteria": "cpe:2.3:a:oracle:jdk:1.7.0:update21:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "50AF5AE9-5314-4CE7-95A7-CE6D1B036D23"}, {"criteria": "cpe:2.3:a:oracle:jdk:1.7.0:update25:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1B10B19C-FA60-4CD5-AA61-A9791F6CECA8"}, {"criteria": "cpe:2.3:a:oracle:jdk:1.7.0:update3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "52EEEA5A-E77C-43CF-A063-9D5C64EA1870"}, {"criteria": "cpe:2.3:a:oracle:jdk:1.7.0:update4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "003746F6-DEF0-4D0F-AD97-9E335868E301"}, {"criteria": "cpe:2.3:a:oracle:jdk:1.7.0:update5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CF830E0E-0169-4B6A-81FF-2E9FCD7D913B"}, {"criteria": "cpe:2.3:a:oracle:jdk:1.7.0:update6:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6BAE3670-0938-480A-8472-DFF0B3A0D0BF"}, {"criteria": "cpe:2.3:a:oracle:jdk:1.7.0:update7:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0EC967FF-26A6-4498-BC09-EC23B2B75CBA"}, {"criteria": "cpe:2.3:a:oracle:jdk:1.7.0:update7_b32:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "270DE3F5-C51F-4E62-B532-7773BCF8CC7C"}, {"criteria": "cpe:2.3:a:oracle:jdk:1.7.0:update9:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "02781457-4E40-46A9-A5F7-945232A8C2B1"}, {"criteria": "cpe:2.3:a:oracle:jdk:1.7.0:update9_b31:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5ED1BA76-BCA4-483F-B238-39FA792984BC"}, {"criteria": "cpe:2.3:a:oracle:jdk:1.7.0:update9_b32:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D450D249-DD3B-435F-B006-C44A215A3DC4"}, {"criteria": "cpe:2.3:a:oracle:jre:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BD9FCDEB-2854-42FF-8BF4-A50890B3F08F", "versionEndExcluding": "1.6.0"}, {"criteria": "cpe:2.3:a:oracle:jre:1.6.0:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EB864346-1429-46B5-A91E-A1126C486421"}, {"criteria": "cpe:2.3:a:oracle:jre:1.6.0:update1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F199B346-B95E-4DCA-B750-148A36D559BA"}, {"criteria": "cpe:2.3:a:oracle:jre:1.6.0:update11:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1714BDEF-6B0E-42BB-9510-3F9B52E170BC"}, {"criteria": "cpe:2.3:a:oracle:jre:1.6.0:update12:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "830A3A51-F17A-4C61-8F5C-6A4582A64DA6"}, {"criteria": "cpe:2.3:a:oracle:jre:1.6.0:update13:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9DE0E496-719D-4CEF-837F-B060A898099F"}, {"criteria": "cpe:2.3:a:oracle:jre:1.6.0:update14:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3B02F361-0C64-4CB8-8DAD-A63F1A9CC025"}, {"criteria": "cpe:2.3:a:oracle:jre:1.6.0:update15:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FD4CC3E2-7BEA-4D8C-811C-C5012327A9AA"}, {"criteria": "cpe:2.3:a:oracle:jre:1.6.0:update16:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9F63A8AC-893D-4D75-B467-85E70B62541D"}, {"criteria": "cpe:2.3:a:oracle:jre:1.6.0:update17:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D7823AE6-CB18-47DE-8A4F-1F98394B7237"}, {"criteria": "cpe:2.3:a:oracle:jre:1.6.0:update18:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "381EFA43-DB73-48EA-A4B1-F451EF60D845"}, {"criteria": "cpe:2.3:a:oracle:jre:1.6.0:update19:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "77C54E00-0197-4C87-9BFF-01A099AC3006"}, {"criteria": "cpe:2.3:a:oracle:jre:1.6.0:update2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "64AD6007-EB92-4D0E-A0CB-8FFDDB61AA6D"}, {"criteria": "cpe:2.3:a:oracle:jre:1.6.0:update20:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7415177F-A2FE-47AB-8D92-194A4F6D75C8"}, {"criteria": "cpe:2.3:a:oracle:jre:1.6.0:update21:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "52FA600C-08B6-4143-9C72-DB31E489DE3E"}, {"criteria": "cpe:2.3:a:oracle:jre:1.6.0:update22:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EF13B96D-1F80-4672-8DA3-F86F6D3BF070"}, {"criteria": "cpe:2.3:a:oracle:jre:1.6.0:update23:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D1A2D440-D966-41A6-955D-38B28DDE0FDB"}, {"criteria": "cpe:2.3:a:oracle:jre:1.6.0:update24:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B1C57774-AD93-4162-8E45-92B09139C808"}, {"criteria": "cpe:2.3:a:oracle:jre:1.6.0:update25:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CD7C4194-D34A-418F-9B00-5C6012844AAE"}, {"criteria": "cpe:2.3:a:oracle:jre:1.6.0:update26:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DAF7D86B-1B4D-4E1F-9EF0-DA7E419D7E99"}, {"criteria": "cpe:2.3:a:oracle:jre:1.6.0:update3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2752B83A-6DD2-4829-9E4F-42CDDCBC38C0"}, {"criteria": "cpe:2.3:a:oracle:jre:1.6.0:update4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "964CCFD6-316A-48C6-9A6B-7CFD1A1FB027"}, {"criteria": "cpe:2.3:a:oracle:jre:1.6.0:update5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DC8771D7-9531-4A1D-B2DE-FAA7A7549801"}, {"criteria": "cpe:2.3:a:oracle:jre:1.6.0:update6:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6C59C275-5964-4E5D-BE80-BA4EA34BEA62"}, {"criteria": "cpe:2.3:a:oracle:jre:1.6.0:update7:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "47C1922B-37E8-4009-97C7-B243F6F96704"}, {"criteria": "cpe:2.3:a:oracle:jre:1.6.0:update8:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "68957C57-EC74-4896-B97D-E936DC6AD31C"}, {"criteria": "cpe:2.3:a:oracle:jre:1.6.0:update9:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6B3A8681-3EAC-4D02-811A-5FCCCC7B5635"}, {"criteria": "cpe:2.3:a:oracle:jre:1.7.0:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DFAA351A-93CD-46A8-A480-CE2783CCD620"}, {"criteria": "cpe:2.3:a:oracle:jre:1.7.0:update1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F4B153FD-E20B-4909-8B10-884E48F5B590"}, {"criteria": "cpe:2.3:a:oracle:jre:1.7.0:update10:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F21933FB-A27C-4AF3-9811-2DE28484A5A6"}, {"criteria": "cpe:2.3:a:oracle:jre:1.7.0:update10_b31:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "61B7A9E2-14BE-40E3-AF51-1BA6FC612170"}, {"criteria": "cpe:2.3:a:oracle:jre:1.7.0:update11:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B2B20041-EB5D-4FA4-AC7D-C35E7878BCFD"}, {"criteria": "cpe:2.3:a:oracle:jre:1.7.0:update13:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F3C3C9C7-73AE-4B1D-AA85-C7F5330A4DE6"}, {"criteria": "cpe:2.3:a:oracle:jre:1.7.0:update15:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1D8BB8D7-D5EC-42D6-BEAA-CB03D1D6513E"}, {"criteria": "cpe:2.3:a:oracle:jre:1.7.0:update17:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "37B5B98B-0E41-4397-8AB0-C18C6F10AED1"}, {"criteria": "cpe:2.3:a:oracle:jre:1.7.0:update17_b31:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B0228195-41B4-4145-B8A4-7B974456ABA1"}, {"criteria": "cpe:2.3:a:oracle:jre:1.7.0:update17_b32:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "44F8FB6D-3602-4263-9814-CCB64B8D1926"}, {"criteria": "cpe:2.3:a:oracle:jre:1.7.0:update2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CB106FA9-26CE-48C5-AEA5-FD1A5454AEE2"}, {"criteria": "cpe:2.3:a:oracle:jre:1.7.0:update21:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4FF6C211-AD55-40FE-9130-77164E586F62"}, {"criteria": "cpe:2.3:a:oracle:jre:1.7.0:update21_b31:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2D3257E5-17DB-4E02-9A8E-DD0E4D4339DB"}, {"criteria": "cpe:2.3:a:oracle:jre:1.7.0:update25:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F40DB141-E5B3-4EC2-9E2F-2E27414FCCB1"}, {"criteria": "cpe:2.3:a:oracle:jre:1.7.0:update25_b33:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3391456D-86B0-457B-83BB-4C74DA0ED634"}, {"criteria": "cpe:2.3:a:oracle:jre:1.7.0:update25_b34:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AA88EAC0-FD2D-4B38-8944-D4B6C3BD6FE7"}, {"criteria": "cpe:2.3:a:oracle:jre:1.7.0:update25_b35:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C12DF03E-6E61-41DF-A283-D16AB356B6A1"}, {"criteria": "cpe:2.3:a:oracle:jre:1.7.0:update3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5831D70B-3854-4CB8-B88D-40F1743DAEE0"}, {"criteria": "cpe:2.3:a:oracle:jre:1.7.0:update4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EEB101C9-CA38-4421-BC0C-C1AD47AA2CC9"}, {"criteria": "cpe:2.3:a:oracle:jre:1.7.0:update5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BA302DF3-ABBB-4262-B206-4C0F7B5B1E91"}, {"criteria": "cpe:2.3:a:oracle:jre:1.7.0:update6:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F9A8EBCB-5E6A-42F0-8D07-F3A3D1C850F0"}, {"criteria": "cpe:2.3:a:oracle:jre:1.7.0:update7:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0CD8A54E-185B-4D34-82EF-C0C05739EC12"}, {"criteria": "cpe:2.3:a:oracle:jre:1.7.0:update7_b32:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CD27AF64-5AA9-40F0-9308-2B4196FE7653"}, {"criteria": "cpe:2.3:a:oracle:jre:1.7.0:update9:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4FFC7F0D-1F32-4235-8359-277CE41382DF"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*", "vulnerable": true, "matchCriteriaId": "01EDA41C-6B2E-49AF-B503-EB3882265C11"}, {"criteria": "cpe:2.3:o:canonical:ubuntu_linux:10.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "87614B58-24AB-49FB-9C84-E8DDBA16353B"}, {"criteria": "cpe:2.3:o:canonical:ubuntu_linux:11.04:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EF49D26F-142E-468B-87C1-BABEA445255C"}, {"criteria": "cpe:2.3:o:canonical:ubuntu_linux:11.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E4174F4F-149E-41A6-BBCC-D01114C05F38"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:redhat:satellite_with_embedded_oracle:5.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B2A12684-8CB8-49A6-8E06-1E1AE5B43E87"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:suse:linux_enterprise_java:10:sp4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3CF5C5B9-2CB9-4CD8-B94F-A674ED909CC3"}, {"criteria": "cpe:2.3:o:suse:linux_enterprise_server:10:sp4:*:*:-:*:*:*", "vulnerable": true, "matchCriteriaId": "D1D7B467-58DD-45F1-9F1F-632620DF072A"}], "operator": "OR"}]}], "sourceIdentifier": "secalert_us@oracle.com", "cisaRequiredAction": "Apply updates per vendor instructions.", "cisaVulnerabilityName": "Oracle Java SE Runtime Environment (JRE) Arbitrary Code Execution Vulnerability"}

9.8 /10