6.8

CVE-2007-3922

EPSS 3.98%
Veröffentlicht 21.07.2007 00:30:00
Zuletzt bearbeitet 09.04.2025 00:30:58
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

Unspecified vulnerability in the Java Runtime Environment (JRE) Applet Class Loader in Sun JDK and JRE 5.0 Update 11 and earlier, 6 through 6 Update 1, and SDK and JRE 1.4.2_14 and earlier, allows remote attackers to violate the security model for an applet's outbound connections by connecting to certain localhost services running on the machine that loaded the applet.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 32

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Sun ≫ Jdk Updateupdate9 Version <= 1.5.0

Sun ≫ Jdk Updateupdate1 Version <= 1.6.0

Sun ≫ Jre Updateupdate11 Version <= 1.5.0

Sun ≫ Jre Updateupdate1 Version <= 1.6.0

Sun ≫ Sdk Version <= 1.4.2_14

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	3.98%	0.879

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	6.8	8.6	6.4	AV:N/AC:M/Au:N/C:P/I:P/A:P

http://docs.info.apple.com/article.html?artnum=307177

http://lists.apple.com/archives/Security-announce/2007/Dec/msg00001.html

http://secunia.com/advisories/28115

http://www.vupen.com/english/advisories/2007/4224

http://secunia.com/advisories/26645

http://secunia.com/advisories/26369

http://www.redhat.com/support/errata/RHSA-2007-0829.html

http://dev2dev.bea.com/pub/advisory/248

http://secunia.com/advisories/26631

http://secunia.com/advisories/26933

http://secunia.com/advisories/27266

http://secunia.com/advisories/30805

http://www.gentoo.org/security/en/glsa/glsa-200709-15.xml

http://www.novell.com/linux/security/advisories/2007_56_ibmjava.html

http://www.redhat.com/support/errata/RHSA-2008-0133.html

http://www.vupen.com/english/advisories/2007/3009

http://secunia.com/advisories/26314

http://www.redhat.com/support/errata/RHSA-2007-0818.html

http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01269450

http://secunia.com/advisories/27635

http://www.vupen.com/english/advisories/2007/3861

http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.486841

http://sunsolve.sun.com/search/document.do?assetkey=1-26-102995-1

http://support.avaya.com/elmodocs2/security/ASA-2007-322.htm

http://www.securityfocus.com/bid/25054

http://www.securitytracker.com/id?1018428

http://www.vupen.com/english/advisories/2007/2573

https://exchange.xforce.ibmcloud.com/vulnerabilities/35491

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10387

https://nvd.nist.gov/vuln/detail/CVE-2007-3922

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2007-3922

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2007-3922

EUVD