CVE-2012-5070
Advisory lineage Upstream: 0 Downstream: 4
Modified
Published: 16 Oct 2012, 21:29
Last modified:06 Aug 2024, 20:58
Vulnerability Summary
Overall Risk (default)
low
20/100 CVSS Score
5 MEDIUM
v2.0 (nvd)
EPSS Score
1.38% LOW
1% probability 0.00%
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
16 Oct 2012, 21:29
Published
Vulnerability first disclosed
06 Aug 2024, 20:58
Last Modified
Vulnerability information updated
Description
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier allows remote attackers to affect confidentiality, related to JMX.
CVSS Metrics
- v2.0•MEDIUM•Score: 5AV:N/AC:L/Au:N/C:P/I:N/A:N
EPSS Trends
Current EPSS score: 1.38%• Percentile: 81%
Affected Systems
- oracle•jdk
≤ 1.7.0 | 1.7.0 | 1.7.0:update1 | 1.7.0:update2 | 1.7.0:update3 | 1.7.0:update4 | 1.7.0:update5 | 1.7.0:update6
- oracle•jre
≤ 1.7.0 | 1.7.0 | 1.7.0:update1 | 1.7.0:update2 | 1.7.0:update3 | 1.7.0:update4 | 1.7.0:update5 | 1.7.0:update6
References (12)
- http://lists.opensuse.org/opensuse-security-announce/2012-10/msg00016.html
- http://security.gentoo.org/glsa/glsa-201406-32.xml
- http://rhn.redhat.com/errata/RHSA-2012-1386.html
- http://rhn.redhat.com/errata/RHSA-2012-1391.html
- http://secunia.com/advisories/51029
- https://exchange.xforce.ibmcloud.com/vulnerabilities/79430
- http://secunia.com/advisories/51390
- http://rhn.redhat.com/errata/RHSA-2012-1467.html
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16093
- http://www.securityfocus.com/bid/56079
- http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html
- http://secunia.com/advisories/51326