CVE-2013-2428 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	10 UNKNOWN	NETWORK	LOW		AV:N/AC:L/Au:N/C:C/I:C/A:C
oracle	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 78%

Vendor	Product	Version
oracle	jre	𝑥 ≤ 1.7.0
oracle	jre	1.7.0
oracle	jre	1.7.0
oracle	jre	1.7.0
oracle	jre	1.7.0
oracle	jre	1.7.0
oracle	jre	1.7.0
oracle	jre	1.7.0
oracle	jre	1.7.0
oracle	jre	1.7.0
oracle	jre	1.7.0
oracle	jre	1.7.0
oracle	jre	1.7.0
oracle	jre	1.7.0
oracle	jdk	𝑥 ≤ 1.7.0
oracle	jdk	1.7.0
oracle	jdk	1.7.0
oracle	jdk	1.7.0
oracle	jdk	1.7.0
oracle	jdk	1.7.0
oracle	jdk	1.7.0
oracle	jdk	1.7.0
oracle	jdk	1.7.0
oracle	jdk	1.7.0
oracle	jdk	1.7.0
oracle	jdk	1.7.0
oracle	jdk	1.7.0
oracle	jdk	1.7.0
oracle	javafx	𝑥 ≤ 2.2.7
oracle	javafx	2.0
oracle	javafx	2.0.2
oracle	javafx	2.0.3
oracle	javafx	2.1
oracle	javafx	2.2
oracle	javafx	2.2.3
oracle	javafx	2.2.4
oracle	javafx	2.2.5

𝑥

= Vulnerable software versions

Ubuntu Releases

Ubuntu Product

Codename

icedtea-web

quantal	not-affected
precise	not-affected
oneiric	not-affected
lucid	not-affected
hardy	dne

openjdk-6

quantal	not-affected
precise	not-affected
oneiric	not-affected
lucid	not-affected
hardy	ignored

openjdk-6b18

quantal	dne
precise	dne
oneiric	ignored
lucid	ignored
hardy	dne

openjdk-7

quantal	not-affected
precise	not-affected
oneiric	not-affected
lucid	dne
hardy	dne

References

http://rhn.redhat.com/errata/RHSA-2013-0757.html

http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html

http://www.us-cert.gov/ncas/alerts/TA13-107A

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16416

http://rhn.redhat.com/errata/RHSA-2013-0757.html

http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html

http://www.us-cert.gov/ncas/alerts/TA13-107A

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16416