CVE-2013-0443

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality and integrity via vectors related to JSSE.  NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect validation of Diffie-Hellman keys, which allows remote attackers to conduct a "small subgroup attack" to force the use of weak session keys or obtain sensitive information about the private key.
Severity
UNKNOWN
AV:N/AC:H/Au:N/C:P/I:P/A:N
Atk. Vector
NETWORK
Atk. Complexity
HIGH
Base Score
CVSS 3.x
EPSS Score
Percentile: 91%
VendorProductVersion
oraclejre
1.7.0
oraclejre
1.7.0
oraclejre
1.7.0
oraclejre
1.7.0
oraclejre
1.7.0
oraclejre
1.7.0
oraclejre
1.7.0
oraclejre
1.7.0
oraclejre
1.7.0
oraclejre
1.7.0
oraclejre
1.7.0
oraclejdk
1.7.0
oraclejdk
1.7.0
oraclejdk
1.7.0
oraclejdk
1.7.0
oraclejdk
1.7.0
oraclejdk
1.7.0
oraclejdk
1.7.0
oraclejdk
1.7.0
oraclejdk
1.7.0
oraclejdk
1.7.0
oraclejdk
1.7.0
oraclejre
1.6.0
oraclejre
1.6.0
oraclejre
1.6.0
oraclejre
1.6.0
oraclejre
1.6.0
oraclejre
1.6.0
oraclejre
1.6.0
oraclejre
1.6.0
oraclejre
1.6.0
oraclejre
1.6.0
oraclejre
1.6.0
oraclejre
1.6.0
oraclejre
1.6.0
oraclejre
1.6.0
oraclejre
1.6.0
sunjre
1.6.0
sunjre
1.6.0
sunjre
1.6.0
sunjre
1.6.0
sunjre
1.6.0
sunjre
1.6.0
sunjre
1.6.0
sunjre
1.6.0
sunjre
1.6.0
sunjre
1.6.0
sunjre
1.6.0
sunjre
1.6.0
sunjre
1.6.0
sunjre
1.6.0
sunjre
1.6.0
sunjre
1.6.0
sunjre
1.6.0
sunjre
1.6.0
sunjre
1.6.0
sunjre
1.6.0
sunjre
1.6.0
oraclejdk
1.6.0
oraclejdk
1.6.0
oraclejdk
1.6.0
oraclejdk
1.6.0
oraclejdk
1.6.0
oraclejdk
1.6.0
oraclejdk
1.6.0
oraclejdk
1.6.0
oraclejdk
1.6.0
oraclejdk
1.6.0
oraclejdk
1.6.0
oraclejdk
1.6.0
oraclejdk
1.6.0
oraclejdk
1.6.0
oraclejdk
1.6.0
sunjdk
1.6.0
sunjdk
1.6.0
sunjdk
1.6.0
sunjdk
1.6.0
sunjdk
1.6.0
sunjdk
1.6.0
sunjdk
1.6.0
sunjdk
1.6.0
sunjdk
1.6.0
sunjdk
1.6.0
sunjdk
1.6.0
sunjdk
1.6.0
sunjdk
1.6.0
sunjdk
1.6.0
sunjdk
1.6.0
sunjdk
1.6.0
sunjdk
1.6.0
sunjdk
1.6.0
sunjdk
1.6.0
sunjdk
1.6.0
sunjdk
1.6.0
oraclejre
1.5.0
oraclejre
1.5.0
sunjre
1.5.0
sunjre
1.5.0
sunjre
1.5.0
sunjre
1.5.0
sunjre
1.5.0
sunjre
1.5.0
sunjre
1.5.0
sunjre
1.5.0
sunjre
1.5.0
sunjre
1.5.0
sunjre
1.5.0
sunjre
1.5.0
sunjre
1.5.0
sunjre
1.5.0
sunjre
1.5.0
sunjre
1.5.0
sunjre
1.5.0
sunjre
1.5.0
sunjre
1.5.0
sunjre
1.5.0
sunjre
1.5.0
sunjre
1.5.0
sunjre
1.5.0
sunjre
1.5.0
sunjre
1.5.0
sunjre
1.5.0
sunjre
1.5.0
sunjre
1.5.0
sunjre
1.5.0
sunjre
1.5.0
sunjre
1.5.0
sunjre
1.5.0
oraclejdk
1.5.0
oraclejdk
1.5.0
sunjdk
1.5.0
sunjdk
1.5.0
sunjdk
1.5.0
sunjdk
1.5.0
sunjdk
1.5.0
sunjdk
1.5.0
sunjdk
1.5.0
sunjdk
1.5.0
sunjdk
1.5.0
sunjdk
1.5.0
sunjdk
1.5.0
sunjdk
1.5.0
sunjdk
1.5.0
sunjdk
1.5.0
sunjdk
1.5.0
sunjdk
1.5.0
sunjdk
1.5.0
sunjdk
1.5.0
sunjdk
1.5.0
sunjdk
1.5.0
sunjdk
1.5.0
sunjdk
1.5.0
sunjdk
1.5.0
sunjdk
1.5.0
sunjdk
1.5.0
sunjdk
1.5.0
sunjdk
1.5.0
sunjdk
1.5.0
sunjdk
1.5.0
sunjdk
1.5.0
sunjdk
1.5.0
sunjdk
1.5.0
sunjdk
1.5.0
sunjdk
1.5.0
oraclejre
𝑥
≤ 1.4.2_40
oraclejre
1.4.2_38
sunjre
1.4.2
sunjre
1.4.2_1
sunjre
1.4.2_2
sunjre
1.4.2_3
sunjre
1.4.2_4
sunjre
1.4.2_5
sunjre
1.4.2_6
sunjre
1.4.2_7
sunjre
1.4.2_8
sunjre
1.4.2_9
sunjre
1.4.2_10
sunjre
1.4.2_11
sunjre
1.4.2_12
sunjre
1.4.2_13
sunjre
1.4.2_14
sunjre
1.4.2_15
sunjre
1.4.2_16
sunjre
1.4.2_17
sunjre
1.4.2_18
sunjre
1.4.2_19
sunjre
1.4.2_20
sunjre
1.4.2_21
sunjre
1.4.2_22
sunjre
1.4.2_23
sunjre
1.4.2_24
sunjre
1.4.2_25
sunjre
1.4.2_26
sunjre
1.4.2_27
sunjre
1.4.2_28
sunjre
1.4.2_29
sunjre
1.4.2_30
sunjre
1.4.2_31
sunjre
1.4.2_32
sunjre
1.4.2_33
sunjre
1.4.2_34
sunjre
1.4.2_35
sunjre
1.4.2_36
sunjre
1.4.2_37
oraclejdk
𝑥
≤ 1.4.2_40
oraclejdk
1.4.2_38
sunjdk
1.4.2
sunjdk
1.4.2_1
sunjdk
1.4.2_2
sunjdk
1.4.2_3
sunjdk
1.4.2_4
sunjdk
1.4.2_5
sunjdk
1.4.2_6
sunjdk
1.4.2_7
sunjdk
1.4.2_8
sunjdk
1.4.2_9
sunjdk
1.4.2_10
sunjdk
1.4.2_11
sunjdk
1.4.2_12
sunjdk
1.4.2_13
sunjdk
1.4.2_14
sunjdk
1.4.2_15
sunjdk
1.4.2_16
sunjdk
1.4.2_17
sunjdk
1.4.2_18
sunjdk
1.4.2_19
sunjdk
1.4.2_22
sunjdk
1.4.2_23
sunjdk
1.4.2_25
sunjdk
1.4.2_26
sunjdk
1.4.2_27
sunjdk
1.4.2_28
sunjdk
1.4.2_29
sunjdk
1.4.2_30
sunjdk
1.4.2_31
sunjdk
1.4.2_32
sunjdk
1.4.2_33
sunjdk
1.4.2_34
sunjdk
1.4.2_35
sunjdk
1.4.2_36
sunjdk
1.4.2_37
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
openjdk-6
quantal
Fixed 6b27-1.12.1-2ubuntu0.12.10.2
released
precise
Fixed 6b27-1.12.1-2ubuntu0.12.04.2
released
oneiric
Fixed 6b27-1.12.1-2ubuntu0.11.10.2
released
lucid
Fixed 6b27-1.12.1-2ubuntu0.10.04.2
released
hardy
Fixed 6b27-1.12.3-0ubuntu1~08.04.1
released
openjdk-6b18
quantal
dne
precise
dne
oneiric
ignored
lucid
ignored
hardy
dne
openjdk-7
quantal
Fixed 7u13-2.3.6-0ubuntu0.12.10.1
released
precise
Fixed 7u13-2.3.6-0ubuntu0.12.04.1
released
oneiric
Fixed 7u13-2.3.6-0ubuntu0.11.10.2
released
lucid
dne
hardy
dne
sun-java5
quantal
dne
precise
dne
oneiric
dne
lucid
dne
hardy
ignored
sun-java6
quantal
dne
precise
dne
oneiric
dne
lucid
dne
hardy
ignored
References