CVE-2013-2428 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	10 UNKNOWN	NETWORK	LOW		AV:N/AC:L/Au:N/C:C/I:C/A:C

Base Score

CVSS 3.x

EPSS Score

Percentile: 81%

Affected Products (NVD)

Vendor	Product	Version
oracle	jre	𝑥 ≤ 1.7.0
oracle	jre	1.7.0
oracle	jre	1.7.0
oracle	jre	1.7.0
oracle	jre	1.7.0
oracle	jre	1.7.0
oracle	jre	1.7.0
oracle	jre	1.7.0
oracle	jre	1.7.0
oracle	jre	1.7.0
oracle	jre	1.7.0
oracle	jre	1.7.0
oracle	jre	1.7.0
oracle	jre	1.7.0
oracle	jdk	𝑥 ≤ 1.7.0
oracle	jdk	1.7.0
oracle	jdk	1.7.0
oracle	jdk	1.7.0
oracle	jdk	1.7.0
oracle	jdk	1.7.0
oracle	jdk	1.7.0
oracle	jdk	1.7.0
oracle	jdk	1.7.0
oracle	jdk	1.7.0
oracle	jdk	1.7.0
oracle	jdk	1.7.0
oracle	jdk	1.7.0
oracle	jdk	1.7.0
oracle	javafx	𝑥 ≤ 2.2.7
oracle	javafx	2.0
oracle	javafx	2.0.2
oracle	javafx	2.0.3
oracle	javafx	2.1
oracle	javafx	2.2
oracle	javafx	2.2.3
oracle	javafx	2.2.4
oracle	javafx	2.2.5

𝑥

= Vulnerable software versions

Ubuntu Releases

Ubuntu Product

Codename

icedtea-web

hardy	dne
lucid	not-affected
oneiric	not-affected
precise	not-affected
quantal	not-affected

openjdk-6

hardy	ignored
lucid	not-affected
oneiric	not-affected
precise	not-affected
quantal	not-affected

openjdk-6b18

hardy	dne
lucid	ignored
oneiric	ignored
precise	dne
quantal	dne

openjdk-7

hardy	dne
lucid	dne
oneiric	not-affected
precise	not-affected
quantal	not-affected

References

http://rhn.redhat.com/errata/RHSA-2013-0757.html

http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html

http://www.us-cert.gov/ncas/alerts/TA13-107A

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16416

http://rhn.redhat.com/errata/RHSA-2013-0757.html

http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html

http://www.us-cert.gov/ncas/alerts/TA13-107A

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16416