CVE-2011-3544
KEV
🔴 Łataj teraz
Nieokreślona podatność w Java Runtime Environment umożliwia zdalne naruszenie poufności i integralności.
CVSS
9.8
EPSS
92.5%
Exploit
weaponized
Vendor
oracle
Opis źródłowy (NVD)
Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7 and 6 Update 27 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Scripting.
brak
Brak patcha
Źródła i daty
| Źródło | Wartość |
|---|---|
| NVD – CVSS | 9.8 |
| CISA KEV (aktywnie wykorzystywane) | Tak |
| FIRST EPSS (prawdopodobieństwo exploita) | 92.5% |
| Opublikowano (NVD) | 2011-10-19 21:55:01 UTC |
| Ostatnia modyfikacja (NVD) | 2026-04-22 13:10:42 UTC |
Referencje
- http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00049.html (secalert_us@oracle.com) [Mailing List, Third Party Advisory]
- http://marc.info/?l=bugtraq&m=132750579901589&w=2 (secalert_us@oracle.com) [Mailing List]
- http://marc.info/?l=bugtraq&m=134254866602253&w=2 (secalert_us@oracle.com) [Mailing List]
- http://marc.info/?l=bugtraq&m=134254957702612&w=2 (secalert_us@oracle.com) [Mailing List]
- http://rhn.redhat.com/errata/RHSA-2013-1455.html (secalert_us@oracle.com) [Third Party Advisory]
- http://secunia.com/advisories/48308 (secalert_us@oracle.com) [Broken Link]
- http://security.gentoo.org/glsa/glsa-201406-32.xml (secalert_us@oracle.com) [Third Party Advisory]
- http://www.ibm.com/developerworks/java/jdk/alerts/ (secalert_us@oracle.com) [Product]
- http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html (secalert_us@oracle.com) [Patch, Vendor Advisory]
- http://www.redhat.com/support/errata/RHSA-2011-1384.html (secalert_us@oracle.com) [Broken Link]
- http://www.securityfocus.com/bid/50218 (secalert_us@oracle.com) [Broken Link, Third Party Advisory, VDB Entry]
- http://www.securitytracker.com/id?1026215 (secalert_us@oracle.com) [Broken Link, Third Party Advisory, VDB Entry]
- http://www.ubuntu.com/usn/USN-1263-1 (secalert_us@oracle.com) [Third Party Advisory]
- https://exchange.xforce.ibmcloud.com/vulnerabilities/70849 (secalert_us@oracle.com) [Third Party Advisory, VDB Entry]
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13947 (secalert_us@oracle.com) [Broken Link]
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2011-3544 (134c704f-9b21-4f2e-91b3-4a467353bcc0) [US Government Resource]