) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
Search Results (Refine Search)
- Keyword (text search): cpe:2.3:a:oracle:jdk:1.6.0:update121:*:*:*:*:*:*
- CPE Name Search: true
| Vuln ID | Summary | CVSS Severity |
|---|---|---|
| CVE-2013-4578 |
jarsigner in OpenJDK and Oracle Java SE before 7u51 allows remote attackers to bypass a code-signing protection mechanism and inject unsigned bytecode into a signed JAR file by leveraging improper file validation. Published: December 29, 2017; 5:29:00 PM -0500 |
V3.0: 5.3 MEDIUM V2.0: 5.0 MEDIUM |
| CVE-2016-5597 |
Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and Java SE Embedded 8u101 allows remote attackers to affect confidentiality via vectors related to Networking. Published: October 25, 2016; 10:31:08 AM -0400 |
V3.0: 5.9 MEDIUM V2.0: 4.3 MEDIUM |
| CVE-2016-5582 |
Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and Java SE Embedded 8u101 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Hotspot, a different vulnerability than CVE-2016-5573. Published: October 25, 2016; 10:30:52 AM -0400 |
V3.0: 9.6 CRITICAL V2.0: 9.3 HIGH |
| CVE-2016-5573 |
Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and Java SE Embedded 8u101 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Hotspot, a different vulnerability than CVE-2016-5582. Published: October 25, 2016; 10:30:42 AM -0400 |
V3.0: 8.3 HIGH V2.0: 6.8 MEDIUM |
| CVE-2016-5568 |
Unspecified vulnerability in Oracle Java SE 6u121, 7u111, and 8u102 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. Published: October 25, 2016; 10:30:35 AM -0400 |
V3.0: 9.6 CRITICAL V2.0: 9.3 HIGH |
| CVE-2016-5556 |
Unspecified vulnerability in Oracle Java SE 6u121, 7u111, and 8u102 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to 2D. Published: October 25, 2016; 10:30:23 AM -0400 |
V3.0: 9.6 CRITICAL V2.0: 9.3 HIGH |
| CVE-2016-5554 |
Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and Java SE Embedded 8u101 allows remote attackers to affect integrity via vectors related to JMX. Published: October 25, 2016; 10:30:21 AM -0400 |
V3.0: 4.3 MEDIUM V2.0: 4.3 MEDIUM |
| CVE-2016-5542 |
Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and Java SE Embedded 8u101 allows remote attackers to affect integrity via vectors related to Libraries. Published: October 25, 2016; 10:30:17 AM -0400 |
V3.0: 3.1 LOW V2.0: 4.3 MEDIUM |
| CVE-2013-5788 |
Unspecified vulnerability in Oracle Java SE 7u40 and earlier and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment. Published: October 16, 2013; 11:55:34 AM -0400 |
V3.x:(not available) V2.0: 10.0 HIGH |
| CVE-2012-5373 |
Oracle Java SE 7 and earlier, and OpenJDK 7 and earlier, computes hash values without properly restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted input to an application that maintains a hash table, as demonstrated by a universal multicollision attack against the MurmurHash3 algorithm, a different vulnerability than CVE-2012-2739. Published: November 28, 2012; 8:03:10 AM -0500 |
V3.x:(not available) V2.0: 5.0 MEDIUM |
| CVE-2007-3503 |
The Javadoc tool in Sun JDK 6 and JDK 5.0 Update 11 can generate HTML documentation pages that contain cross-site scripting (XSS) vulnerabilities, which allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Published: June 29, 2007; 9:30:00 PM -0400 |
V3.x:(not available) V2.0: 4.3 MEDIUM |