ID CVE-2013-5888
Summary Unspecified vulnerability in Oracle Java SE 6u65 and 7u45, when running with GNOME, allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Deployment. Per: http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html "Applies to client deployment of Java under GNOME environment on Linux and Solaris."
References
Vulnerable Configurations
  • cpe:2.3:a:oracle:jdk:1.6.0:update_65:*:*:*:*:*:*
    cpe:2.3:a:oracle:jdk:1.6.0:update_65:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jre:1.6.0:update_65:*:*:*:*:*:*
    cpe:2.3:a:oracle:jre:1.6.0:update_65:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jre:1.7.0:update_45:*:*:*:*:*:*
    cpe:2.3:a:oracle:jre:1.7.0:update_45:*:*:*:*:*:*
CVSS
Base: 4.6 (as of 05-01-2018 - 02:29)
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
LOCAL LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:L/AC:L/Au:N/C:P/I:P/A:P
redhat via4
advisories
  • rhsa
    id RHSA-2014:0030
  • rhsa
    id RHSA-2014:0134
  • rhsa
    id RHSA-2014:0135
  • rhsa
    id RHSA-2014:0414
refmap via4
bid
  • 64758
  • 64925
confirm
hp
  • HPSBUX02972
  • HPSBUX02973
  • SSRT101454
  • SSRT101455
osvdb 102023
sectrack 1029608
secunia
  • 56485
  • 56535
suse
  • SUSE-SU-2014:0246
  • SUSE-SU-2014:0266
  • SUSE-SU-2014:0451
xf oracle-cpujan2014-cve20135888(90354)
Last major update 05-01-2018 - 02:29
Published 15-01-2014 - 16:11
Last modified 08-09-2020 - 13:00
Back to Top