CVE-2012-1723

KEV

🔴 Łataj teraz

Nieokreślona podatność w Java Runtime Environment umożliwia zdalnym atakującym wpływ na poufność i integralność danych.

CVSS

9.8

EPSS

94.1%

Exploit

weaponized

Vendor

oracle

Opis źródłowy (NVD)

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.2_37 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.

brak Brak patcha

Źródła i daty

Źródło	Wartość
NVD – CVSS	9.8
CISA KEV (aktywnie wykorzystywane)	Tak
FIRST EPSS (prawdopodobieństwo exploita)	94.1%
Opublikowano (NVD)	2012-06-16 21:55:03 UTC
Ostatnia modyfikacja (NVD)	2026-04-21 20:29:20 UTC

Referencje

http://mail.openjdk.java.net/pipermail/distro-pkg-dev/2012-June/019076.html (secalert_us@oracle.com) [Mailing List]
http://marc.info/?l=bugtraq&m=134496371727681&w=2 (secalert_us@oracle.com) [Mailing List]
http://rhn.redhat.com/errata/RHSA-2012-0734.html (secalert_us@oracle.com) [Third Party Advisory]
http://secunia.com/advisories/51080 (secalert_us@oracle.com) [Broken Link]
http://security.gentoo.org/glsa/glsa-201406-32.xml (secalert_us@oracle.com) [Third Party Advisory]
http://www.ibm.com/support/docview.wss?uid=swg21615246 (secalert_us@oracle.com) [Broken Link]
http://www.mandriva.com/security/advisories?name=MDVSA-2012:095 (secalert_us@oracle.com) [Broken Link]
http://www.oracle.com/technetwork/topics/security/javacpujun2012-1515912.html (secalert_us@oracle.com) [Vendor Advisory]
http://www.securityfocus.com/bid/53960 (secalert_us@oracle.com) [Broken Link, Third Party Advisory, VDB Entry]
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16259 (secalert_us@oracle.com) [Broken Link]
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2012-1723 (134c704f-9b21-4f2e-91b3-4a467353bcc0) [US Government Resource]