Ibm

Java

27 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.3

CVE-2013-5456

  • EPSS 1.8%
  • Veröffentlicht 24.11.2013 18:55:04
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The com.ibm.rmi.io.SunSerializableFactory class in IBM Java SDK 7.0.0 before SR6 allows remote attackers to bypass a sandbox protection mechanism and execute arbitrary code via vectors related to deserialization inside the AccessController doPrivileg...

6.8

CVE-2013-5375

  • EPSS 1.86%
  • Veröffentlicht 24.11.2013 18:55:04
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Unspecified vulnerability in IBM Java SDK 7.0.0 before SR6, 6.0.1 before SR7, 6.0.0 before SR15, and 5.0.0 before SR16 FP4 allows remote attackers to access restricted classes via unspecified vectors related to XML and XSL.

6.8

CVE-2013-4041

  • EPSS 1.86%
  • Veröffentlicht 24.11.2013 18:55:04
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Unspecified vulnerability in IBM Java SDK 5.0.0 before SR16 FP4, 7.0.0 before SR6, 6.0.1 before SR7, and 6.0.0 before SR15 allows remote attackers to access restricted classes via unspecified vectors.

7.1

CVE-2013-4002

  • EPSS 1.42%
  • Veröffentlicht 23.07.2013 11:03:19
  • Zuletzt bearbeitet 11.04.2025 00:51:21

XMLscanner.java in Apache Xerces2 Java Parser before 2.12.0, as used in the Java Runtime Environment (JRE) in IBM Java 5.0 before 5.0 SR16-FP3, 6 before 6 SR14, 6.0.1 before 6.0.1 SR6, and 7 before 7 SR5 as well as Oracle Java SE 7u40 and earlier, Ja...

9.3

CVE-2013-3012

  • EPSS 7.45%
  • Veröffentlicht 23.07.2013 11:03:19
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Unspecified vulnerability in the Java Runtime Environment (JRE) in IBM Java 1.4.2 before 1.4.2 SR13-FP18, 5.0 before 5.0 SR16-FP3, 6 before 6 SR14, 6.0.1 before 6.0.1 SR6, and 7 before 7 SR5 allows remote attackers to affect confidentiality, availabi...

9.3

CVE-2013-3011

  • EPSS 7.45%
  • Veröffentlicht 23.07.2013 11:03:19
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Unspecified vulnerability in the Java Runtime Environment (JRE) in IBM Java 1.4.2 before 1.4.2 SR13-FP18, 5.0 before 5.0 SR16-FP3, 6 before 6 SR14, 6.0.1 before 6.0.1 SR6, and 7 before 7 SR5 allows remote attackers to affect confidentiality, availabi...

9.3

CVE-2013-3010

  • EPSS 3.54%
  • Veröffentlicht 23.07.2013 11:03:19
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Unspecified vulnerability in the Java Runtime Environment (JRE) in IBM Java 6.0.1 before 6.0.1 SR6 and 7 before 7 SR5 allows remote attackers to affect confidentiality, availability, and integrity via unknown vectors, a different vulnerability than C...

9.3

CVE-2013-3009

  • EPSS 3.24%
  • Veröffentlicht 23.07.2013 11:03:19
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The com.ibm.CORBA.iiop.ClientDelegate class in IBM Java 1.4.2 before 1.4.2 SR13-FP18, 5.0 before 5.0 SR16-FP3, 6 before 6 SR14, 6.0.1 before 6.0.1 SR6, and 7 before 7 SR5 improperly exposes the invoke method of the java.lang.reflect.Method class, whi...

9.3

CVE-2013-3008

  • EPSS 3.54%
  • Veröffentlicht 23.07.2013 11:03:19
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Unspecified vulnerability in the Java Runtime Environment (JRE) in IBM Java 7 before 7 SR5 allows remote attackers to affect confidentiality, availability, and integrity via unknown vectors, a different vulnerability than CVE-2013-3006.

9.3

CVE-2013-3007

  • EPSS 2.64%
  • Veröffentlicht 23.07.2013 11:03:19
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Unspecified vulnerability in the Java Runtime Environment (JRE) in IBM Java 6.0.1 before 6.0.1 SR6 and 7 before 7 SR5 allows remote attackers to affect confidentiality, availability, and integrity via unknown vectors, a different vulnerability than C...