5.3

CVE-2020-14803

Vulnerability in the Java SE product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 11.0.8 and 15. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 5.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N).

Data is provided by the National Vulnerability Database (NVD)
OracleOpenjdk Version7 Update-
OracleOpenjdk Version7 Updateupdate1
OracleOpenjdk Version7 Updateupdate10
OracleOpenjdk Version7 Updateupdate101
OracleOpenjdk Version7 Updateupdate11
OracleOpenjdk Version7 Updateupdate111
OracleOpenjdk Version7 Updateupdate121
OracleOpenjdk Version7 Updateupdate13
OracleOpenjdk Version7 Updateupdate131
OracleOpenjdk Version7 Updateupdate141
OracleOpenjdk Version7 Updateupdate15
OracleOpenjdk Version7 Updateupdate151
OracleOpenjdk Version7 Updateupdate161
OracleOpenjdk Version7 Updateupdate17
OracleOpenjdk Version7 Updateupdate171
OracleOpenjdk Version7 Updateupdate181
OracleOpenjdk Version7 Updateupdate191
OracleOpenjdk Version7 Updateupdate2
OracleOpenjdk Version7 Updateupdate201
OracleOpenjdk Version7 Updateupdate21
OracleOpenjdk Version7 Updateupdate211
OracleOpenjdk Version7 Updateupdate221
OracleOpenjdk Version7 Updateupdate231
OracleOpenjdk Version7 Updateupdate241
OracleOpenjdk Version7 Updateupdate25
OracleOpenjdk Version7 Updateupdate251
OracleOpenjdk Version7 Updateupdate261
OracleOpenjdk Version7 Updateupdate271
OracleOpenjdk Version8 Update-
OracleOpenjdk Version8 Updatemilestone1
OracleOpenjdk Version8 Updatemilestone2
OracleOpenjdk Version8 Updatemilestone3
OracleOpenjdk Version8 Updatemilestone4
OracleOpenjdk Version8 Updatemilestone5
OracleOpenjdk Version8 Updatemilestone6
OracleOpenjdk Version8 Updatemilestone7
OracleOpenjdk Version8 Updatemilestone8
OracleOpenjdk Version8 Updatemilestone9
OracleOpenjdk Version8 Updateupdate101
OracleOpenjdk Version8 Updateupdate102
OracleOpenjdk Version8 Updateupdate11
OracleOpenjdk Version8 Updateupdate111
OracleOpenjdk Version8 Updateupdate112
OracleOpenjdk Version8 Updateupdate121
OracleOpenjdk Version8 Updateupdate131
OracleOpenjdk Version8 Updateupdate141
OracleOpenjdk Version8 Updateupdate151
OracleOpenjdk Version8 Updateupdate152
OracleOpenjdk Version8 Updateupdate161
OracleOpenjdk Version8 Updateupdate162
OracleOpenjdk Version8 Updateupdate171
OracleOpenjdk Version8 Updateupdate172
OracleOpenjdk Version8 Updateupdate181
OracleOpenjdk Version8 Updateupdate191
OracleOpenjdk Version8 Updateupdate192
OracleOpenjdk Version8 Updateupdate20
OracleOpenjdk Version8 Updateupdate201
OracleOpenjdk Version8 Updateupdate202
OracleOpenjdk Version8 Updateupdate211
OracleOpenjdk Version8 Updateupdate212
OracleOpenjdk Version8 Updateupdate221
OracleOpenjdk Version8 Updateupdate222
OracleOpenjdk Version8 Updateupdate231
OracleOpenjdk Version8 Updateupdate232
OracleOpenjdk Version8 Updateupdate241
OracleOpenjdk Version8 Updateupdate242
OracleOpenjdk Version8 Updateupdate25
OracleOpenjdk Version8 Updateupdate252
OracleOpenjdk Version8 Updateupdate262
OracleOpenjdk Version11
OracleOpenjdk Version11.0.1
OracleOpenjdk Version11.0.2
OracleOpenjdk Version11.0.3
OracleOpenjdk Version11.0.4
OracleOpenjdk Version11.0.5
OracleOpenjdk Version11.0.6
OracleOpenjdk Version11.0.7
OracleOpenjdk Version11.0.8
OracleOpenjdk Version13
OracleOpenjdk Version13.0.1
OracleOpenjdk Version13.0.2
OracleOpenjdk Version13.0.3
OracleOpenjdk Version13.0.4
OracleOpenjdk Version15
OracleGraalvm Version19.3.3 SwEditionenterprise
OracleGraalvm Version19.3.4 SwEditionenterprise
OracleGraalvm Version20.2.0 SwEditionenterprise
OracleGraalvm Version20.3.0 SwEditionenterprise
OracleJdk Version1.7.0 Updateupdate281
OracleJdk Version1.8.0 Updateupdate271
OracleJdk Version11.0.8
OracleJdk Version15.0
OracleJre Version1.7.0 Updateupdate281
OracleJre Version1.8.0 Updateupdate271
OracleJre Version11.0.8
OracleJre Version15.0
NetappActive Iq Unified Manager SwPlatformwindows Version >= 7.3
NetappActive Iq Unified Manager SwPlatformvmware_vsphere Version >= 9.5
NetappE-series Santricity Os Controller Version >= 11.0.0 <= 11.60.1
NetappOncommand Insight Version-
NetappSnapmanager Version- Update- SwPlatformoracle
NetappSnapmanager Version- Update- SwPlatformsap
NetappSolidfire Version-
NetappHci Storage Node Version-
DebianDebian Linux Version9.0
DebianDebian Linux Version10.0
OpensuseLeap Version15.2
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.04% 0.118
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:P/I:N/A:N
secalert_us@oracle.com 5.3 3.9 1.4
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N