7.1

CVE-2017-10125

Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 7u141 and 8u131. Difficult to exploit vulnerability allows physical access to compromise Java SE. While the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE. Note: Applies to deployment of Java where the Java Auto Update is enabled. CVSS 3.0 Base Score 7.1 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:P/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H).

Daten sind bereitgestellt durch National Vulnerability Database (NVD)
OracleJdk Version1.7.0 Updateupdate141
OracleJdk Version1.8.0 Updateupdate131
OracleJre Version1.7.0 Updateupdate141
OracleJre Version1.8.0 Updateupdate131
NetappActive Iq Unified Manager SwPlatformwindows Version >= 7.3
NetappActive Iq Unified Manager SwPlatformvmware_vsphere Version >= 9.5
NetappCloud Backup Version-
NetappE-series Santricity Os Controller Version >= 11.0 <= 11.70.1
NetappElement Software Version-
NetappOncommand Balance Version-
NetappOncommand Insight Version-
NetappOncommand Performance Manager Version- SwPlatformvmware_vsphere
NetappOncommand Shift Version-
NetappOncommand Unified Manager SwPlatformvsphere Version <= 7.1
NetappOncommand Unified Manager SwPlatformwindows Version <= 7.1
NetappOncommand Unified Manager Version- SwPlatform7-mode
NetappSnapmanager Version- SwPlatformoracle
NetappSnapmanager Version- SwPlatformsap
NetappStorage Replication Adapter For Clustered Data Ontap SwPlatformwindows Version >= 7.2
NetappStorage Replication Adapter For Clustered Data Ontap Version9.6 SwPlatformvmware_vsphere
NetappVirtual Storage Console SwPlatformvmware_vsphere Version >= 7.2
NetappVirtual Storage Console Version6.0 SwPlatformvmware_vsphere
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.25% 0.487
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.1 0.5 6
CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
nvd@nist.gov 4.4 3.4 6.4
AV:L/AC:M/Au:N/C:P/I:P/A:P