CVE-2011-3551

Advisory lineage Upstream: 0 Downstream: 6

Downstream

DSA-2356-1 DSA-2358-1 RHSA-2011:1380 RHSA-2011:1384 RHSA-2012:0034 RHSA-2013:1455

Modified

Published: 19 Oct 2011, 21:00

Last modified:06 Aug 2024, 23:37

Vulnerability Summary

Overall Risk (default)

high

70/100

CVSS Score

9.3 HIGH

v2.0 (nvd)

EPSS Score

6.04% LOW

6% probability -0.31%

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

19 Oct 2011, 21:00

Published

Vulnerability first disclosed

06 Aug 2024, 23:37

Last Modified

Vulnerability information updated

Description

Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, and JRockit R28.1.4 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.

CVSS Metrics

v2.0•HIGH•Score: 9.3AV:N/AC:M/Au:N/C:C/I:C/A:C

EPSS Trends

Current EPSS score: 6.04%• Percentile: 91%

Affected Systems

oracle•jrockit
≤ r28.1.4 | r28.0.0 | r28.0.1 | r28.0.2 | r28.1.0 | r28.1.1 | r28.1.3
sun•jdk
1.7.0 | ≤ 1.6.0 | 1.6.0 | 1.6.0:update_10 | 1.6.0:update_11 | 1.6.0:update_12 | 1.6.0:update_13 | 1.6.0:update_14 | 1.6.0:update_15 | 1.6.0:update_16 | 1.6.0:update_17 | 1.6.0:update_18 | 1.6.0:update_19 | 1.6.0:update_20 | 1.6.0:update_21 | 1.6.0:update_22 | 1.6.0:update_23 | 1.6.0:update_24 | 1.6.0:update_25 | 1.6.0:update_26 | 1.6.0:update_3 | 1.6.0:update_4 | 1.6.0:update_5 | 1.6.0:update_6 | 1.6.0:update_7 | 1.6.0:update1 | 1.6.0:update2
sun•jre
1.7.0 | ≤ 1.6.0 | 1.6.0 | 1.6.0:update_1 | 1.6.0:update_10 | 1.6.0:update_11 | 1.6.0:update_12 | 1.6.0:update_13 | 1.6.0:update_14 | 1.6.0:update_15 | 1.6.0:update_16 | 1.6.0:update_17 | 1.6.0:update_18 | 1.6.0:update_19 | 1.6.0:update_2 | 1.6.0:update_20 | 1.6.0:update_21 | 1.6.0:update_22 | 1.6.0:update_23 | 1.6.0:update_24 | 1.6.0:update_25 | 1.6.0:update_26 | 1.6.0:update_3 | 1.6.0:update_4 | 1.6.0:update_5 | 1.6.0:update_6 | 1.6.0:update_7