CVE-2013-2472

Scores

EPSS

0.544medium54.4%

0%20%40%60%80%100%

Percentile: 54.4%

CVSS

6.8medium2.0

0246810

CVSS Score: 6.8/10

All CVSS Scores

CVSS 2.0

6.8

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Description

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to “Incorrect ShortBandedRaster size checks” in 2D.

Scaner-VS 7 — a modern vulnerability management solution

Uses this database for vulnerability detection. High-speed search, cross-platform, advanced configuration audit, and flexible filtering. Suitable for organizations of any size.

Learn more about Scaner-VS 7

Sources

anchore_overridesdebiannvdredhat

Exploits

Exploit ID: 28331

Source: exploitdb

URL: https://www.exploit-db.com/exploits/28331

Vulnerable Software (26)

Type: Configuration

Operating System:

Trait:

{  "children": [    {      "cpe_match": [        {          "cpe23uri": "cpe:2.3:a:oracle:java_se:*:*:*:*:*:*:*:*",          "versionEndIncluding": "1.5.0_45"        },        {          "cpe...

{  "children": [    {      "cpe_match": [        {          "cpe23uri": "cpe:2.3:a:oracle:java_se:*:*:*:*:*:*:*:*",          "versionEndIncluding": "1.5.0_45"        },        {          "cpe23uri": "cpe:2.3:a:oracle:java_se:*:*:*:*:*:*:*:*",          "versionEndIncluding": "5.0.45",          "versionStartIncluding": "5"        },        {          "cpe23uri": "cpe:2.3:a:oracle:java_se:*:*:*:*:*:*:*:*",          "versionEndExcluding": "1.6.0_45",          "versionStartIncluding": "1.6"        },        {          "cpe23uri": "cpe:2.3:a:oracle:java_se:*:*:*:*:*:*:*:*",          "versionEndExcluding": "6.0.45",          "versionStartIncluding": "6"        },        {          "cpe23uri": "cpe:2.3:a:oracle:java_se:*:*:*:*:*:*:*:*",          "versionEndExcluding": "1.7.0_25",          "versionStartIncluding": "1.7"        },        {          "cpe23uri": "cpe:2.3:a:oracle:java_se:*:*:*:*:*:*:*:*",          "versionEndExcluding": "7.0.25",          "versionStartIncluding": "7"        }      ],      "negate": false,      "operator": "OR"    },    {      "cpe_match": [        {          "cpe23uri": "cpe:2.3:a:oracle:jdk:*:*:*:*:*:*:*:*",          "versionEndIncluding": "1.5.0_45"        },        {          "cpe23uri": "cpe:2.3:a:oracle:jdk:*:*:*:*:*:*:*:*",          "versionEndIncluding": "5.0.45",          "versionStartIncluding": "5"        },        {          "cpe23uri": "cpe:2.3:a:oracle:jdk:*:*:*:*:*:*:*:*",          "versionEndExcluding": "1.6.0_45",          "versionStartIncluding": "1.6"        },        {          "cpe23uri": "cpe:2.3:a:oracle:jdk:*:*:*:*:*:*:*:*",          "versionEndExcluding": "6.0.45",          "versionStartIncluding": "6"        },        {          "cpe23uri": "cpe:2.3:a:oracle:jdk:*:*:*:*:*:*:*:*",          "versionEndExcluding": "1.7.0_25",          "versionStartIncluding": "1.7"        },        {          "cpe23uri": "cpe:2.3:a:oracle:jdk:*:*:*:*:*:*:*:*",          "versionEndExcluding": "7.0.25",          "versionStartIncluding": "7"        }      ],      "negate": false,      "operator": "OR"    },    {      "cpe_match": [        {          "cpe23uri": "cpe:2.3:a:oracle:jre:*:*:*:*:*:*:*:*",          "versionEndIncluding": "1.5.0_45"        },        {          "cpe23uri": "cpe:2.3:a:oracle:jre:*:*:*:*:*:*:*:*",          "versionEndIncluding": "5.0.45",          "versionStartIncluding": "5"        },        {          "cpe23uri": "cpe:2.3:a:oracle:jre:*:*:*:*:*:*:*:*",          "versionEndExcluding": "1.6.0_45",          "versionStartIncluding": "1.6"        },        {          "cpe23uri": "cpe:2.3:a:oracle:jre:*:*:*:*:*:*:*:*",          "versionEndExcluding": "6.0.45",          "versionStartIncluding": "6"        },        {          "cpe23uri": "cpe:2.3:a:oracle:jre:*:*:*:*:*:*:*:*",          "versionEndExcluding": "1.7.0_25",          "versionStartIncluding": "1.7"        },        {          "cpe23uri": "cpe:2.3:a:oracle:jre:*:*:*:*:*:*:*:*",          "versionEndExcluding": "7.0.25",          "versionStartIncluding": "7"        }      ],      "negate": false,      "operator": "OR"    },    {      "cpe_match": [        {          "cpe23uri": "cpe:2.3:a:sun:java:*:*:*:*:*:*:*:*",          "versionEndIncluding": "1.5.0_45"        },        {          "cpe23uri": "cpe:2.3:a:sun:java:*:*:*:*:*:*:*:*",          "versionEndIncluding": "5.0.45",          "versionStartIncluding": "5"        },        {          "cpe23uri": "cpe:2.3:a:sun:java:*:*:*:*:*:*:*:*",          "versionEndExcluding": "1.6.0_45",          "versionStartIncluding": "1.6"        },        {          "cpe23uri": "cpe:2.3:a:sun:java:*:*:*:*:*:*:*:*",          "versionEndExcluding": "6.0.45",          "versionStartIncluding": "6"        },        {          "cpe23uri": "cpe:2.3:a:sun:java:*:*:*:*:*:*:*:*",          "versionEndExcluding": "1.7.0_25",          "versionStartIncluding": "1.7"        },        {          "cpe23uri": "cpe:2.3:a:sun:java:*:*:*:*:*:*:*:*",          "versionEndExcluding": "7.0.25",          "versionStartIncluding": "7"        }      ],      "negate": false,      "operator": "OR"    },    {      "cpe_match": [        {          "cpe23uri": "cpe:2.3:a:sun:java_se:*:*:*:*:*:*:*:*",          "versionEndIncluding": "1.5.0_45"        },        {          "cpe23uri": "cpe:2.3:a:sun:java_se:*:*:*:*:*:*:*:*",          "versionEndIncluding": "5.0.45",          "versionStartIncluding": "5"        },        {          "cpe23uri": "cpe:2.3:a:sun:java_se:*:*:*:*:*:*:*:*",          "versionEndExcluding": "1.6.0_45",          "versionStartIncluding": "1.6"        },        {          "cpe23uri": "cpe:2.3:a:sun:java_se:*:*:*:*:*:*:*:*",          "versionEndExcluding": "6.0.45",          "versionStartIncluding": "6"        },        {          "cpe23uri": "cpe:2.3:a:sun:java_se:*:*:*:*:*:*:*:*",          "versionEndExcluding": "1.7.0_25",          "versionStartIncluding": "1.7"        },        {          "cpe23uri": "cpe:2.3:a:sun:java_se:*:*:*:*:*:*:*:*",          "versionEndExcluding": "7.0.25",          "versionStartIncluding": "7"        }      ],      "negate": false,      "operator": "OR"    },    {      "cpe_match": [        {          "cpe23uri": "cpe:2.3:a:sun:jdk:*:*:*:*:*:*:*:*",          "versionEndIncluding": "1.5.0_45"        },        {          "cpe23uri": "cpe:2.3:a:sun:jdk:*:*:*:*:*:*:*:*",          "versionEndIncluding": "5.0.45",          "versionStartIncluding": "5"        },        {          "cpe23uri": "cpe:2.3:a:sun:jdk:*:*:*:*:*:*:*:*",          "versionEndExcluding": "1.6.0_45",          "versionStartIncluding": "1.6"        },        {          "cpe23uri": "cpe:2.3:a:sun:jdk:*:*:*:*:*:*:*:*",          "versionEndExcluding": "6.0.45",          "versionStartIncluding": "6"        },        {          "cpe23uri": "cpe:2.3:a:sun:jdk:*:*:*:*:*:*:*:*",          "versionEndExcluding": "1.7.0_25",          "versionStartIncluding": "1.7"        },        {          "cpe23uri": "cpe:2.3:a:sun:jdk:*:*:*:*:*:*:*:*",          "versionEndExcluding": "7.0.25",          "versionStartIncluding": "7"        }      ],      "negate": false,      "operator": "OR"    },    {      "cpe_match": [        {          "cpe23uri": "cpe:2.3:a:sun:jre:*:*:*:*:*:*:*:*",          "versionEndIncluding": "1.5.0_45"        },        {          "cpe23uri": "cpe:2.3:a:sun:jre:*:*:*:*:*:*:*:*",          "versionEndIncluding": "5.0.45",          "versionStartIncluding": "5"        },        {          "cpe23uri": "cpe:2.3:a:sun:jre:*:*:*:*:*:*:*:*",          "versionEndExcluding": "1.6.0_45",          "versionStartIncluding": "1.6"        },        {          "cpe23uri": "cpe:2.3:a:sun:jre:*:*:*:*:*:*:*:*",          "versionEndExcluding": "6.0.45",          "versionStartIncluding": "6"        },        {          "cpe23uri": "cpe:2.3:a:sun:jre:*:*:*:*:*:*:*:*",          "versionEndExcluding": "1.7.0_25",          "versionStartIncluding": "1.7"        },        {          "cpe23uri": "cpe:2.3:a:sun:jre:*:*:*:*:*:*:*:*",          "versionEndExcluding": "7.0.25",          "versionStartIncluding": "7"        }      ],      "negate": false,      "operator": "OR"    }  ],  "operator": "OR"}

Source: anchore_overrides

Type: Configuration

Operating System:

Trait:

{  "children": [    {      "cpe_match": [        {          "cpe23uri": "cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*",          "versionEndIncluding": "1.5.0_45"        },        {          "cpe...

{  "children": [    {      "cpe_match": [        {          "cpe23uri": "cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*",          "versionEndIncluding": "1.5.0_45"        },        {          "cpe23uri": "cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*",          "versionEndIncluding": "5.0.45",          "versionStartIncluding": "5"        },        {          "cpe23uri": "cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*",          "versionEndExcluding": "1.6.0_45",          "versionStartIncluding": "1.6"        },        {          "cpe23uri": "cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*",          "versionEndExcluding": "6.0.45",          "versionStartIncluding": "6"        },        {          "cpe23uri": "cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*",          "versionEndExcluding": "1.7.0_25",          "versionStartIncluding": "1.7"        },        {          "cpe23uri": "cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*",          "versionEndExcluding": "7.0.25",          "versionStartIncluding": "7"        }      ],      "negate": false,      "operator": "OR"    },    {      "cpe_match": [        {          "cpe23uri": "cpe:2.3:a:sun:openjdk:*:*:*:*:*:*:*:*",          "versionEndIncluding": "1.5.0_45"        },        {          "cpe23uri": "cpe:2.3:a:sun:openjdk:*:*:*:*:*:*:*:*",          "versionEndIncluding": "5.0.45",          "versionStartIncluding": "5"        },        {          "cpe23uri": "cpe:2.3:a:sun:openjdk:*:*:*:*:*:*:*:*",          "versionEndExcluding": "1.6.0_45",          "versionStartIncluding": "1.6"        },        {          "cpe23uri": "cpe:2.3:a:sun:openjdk:*:*:*:*:*:*:*:*",          "versionEndExcluding": "6.0.45",          "versionStartIncluding": "6"        },        {          "cpe23uri": "cpe:2.3:a:sun:openjdk:*:*:*:*:*:*:*:*",          "versionEndExcluding": "1.7.0_25",          "versionStartIncluding": "1.7"        },        {          "cpe23uri": "cpe:2.3:a:sun:openjdk:*:*:*:*:*:*:*:*",          "versionEndExcluding": "7.0.25",          "versionStartIncluding": "7"        }      ],      "negate": false,      "operator": "OR"    }  ],  "operator": "OR"}

Source: anchore_overrides

Type: Configuration

Product: java-1.5.0-ibm

Operating System: rhel

Trait:

{  "fixed": "1.5.0.16.3-1jpp.1.el5_9"}

Source: redhat

Type: Configuration

Product: java-1.5.0-ibm

Operating System: rhel

Trait:

{  "fixed": "1.5.0.16.3-1jpp.1.el6_4"}

Source: redhat

Type: Configuration

Product: java-1.6.0-ibm

Operating System: rhel

Trait:

{  "fixed": "1.6.0.14.0-1jpp.1.el5_9"}

Source: redhat

Type: Configuration

Product: java-1.6.0-ibm

Operating System: rhel

Trait:

{  "fixed": "1.6.0.14.0-1jpp.1.el5_9"}

Source: redhat

Type: Configuration

Product: java-1.6.0-ibm

Operating System: rhel

Trait:

{  "fixed": "1.6.0.14.0-1jpp.1.el5_9"}

Source: redhat

Type: Configuration

Product: java-1.6.0-ibm

Operating System: rhel

Trait:

{  "fixed": "1.6.0.14.0-1jpp.1.el6_4"}

Source: redhat

Type: Configuration

Product: java-1.6.0-openjdk

Operating System: rhel 5

Trait:

{  "fixed": "1.6.0.0-1.41.1.11.11.90.el5_9"}

Source: redhat

Type: Configuration

Product: java-1.6.0-openjdk

Operating System: rhel 6

Trait:

{  "fixed": "1.6.0.0-1.62.1.11.11.90.el6_4"}

Source: redhat

Type: Configuration

Product: java-1.6.0-sun

Operating System: rhel

Trait:

{  "fixed": "1.6.0.75-1jpp.3.el5_10"}

Source: redhat

Type: Configuration

Product: java-1.6.0-sun

Operating System: rhel

Trait:

{  "fixed": "1.6.0.75-1jpp.1.el6_5"}

Source: redhat

Type: Configuration

Product: java-1.7.0-ibm

Operating System: rhel

Trait:

{  "fixed": "1.7.0.5.0-1jpp.2.el5_9"}

Source: redhat

Type: Configuration

Product: java-1.7.0-ibm

Operating System: rhel

Trait:

{  "fixed": "1.7.0.5.0-1jpp.2.el6_4"}

Source: redhat

Type: Configuration

Product: java-1.7.0-openjdk

Operating System: rhel 5

Trait:

{  "fixed": "1.7.0.25-2.3.10.4.el5_9"}

Source: redhat

Type: Configuration

Product: java-1.7.0-openjdk

Operating System: rhel 6

Trait:

{  "fixed": "1.7.0.25-2.3.10.3.el6_4"}

Source: redhat

Type: Configuration

Product: java-1.7.0-oracle

Operating System: rhel

Trait:

{  "fixed": "1.7.0.25-1jpp.1.el5_9"}

Source: redhat

Type: Configuration

Product: java-1.7.0-oracle

Operating System: rhel

Trait:

{  "fixed": "1.7.0.25-1jpp.1.el6_4"}

Source: redhat

Type: Configuration

Product: openjdk-6

Operating System: debian

Trait:

{  "fixed": "6b27-1.12.6-1"}

Source: debian

Type: Configuration

Product: openjdk-7

Operating System: debian

Trait:

{  "fixed": "7u25-2.3.10-1"}

Source: debian

Russian Vulnerability Scanner Database

CVE-2013-2472

Scores

EPSS

CVSS

All CVSS Scores

Vector Breakdown

CVSS

Attack Vector

Attack Complexity

Authentication

Confidentiality Impact

Integrity Impact

Availability Impact

Description

Scaner-VS 7 — a modern vulnerability management solution

Sources

Exploits

Vulnerable Software (26)