ID CVE-2020-2800
Summary Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Lightweight HTTP Server). Supported versions that are affected are Java SE: 7u251, 8u241, 11.0.6 and 14; Java SE Embedded: 8u241. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Java SE, Java SE Embedded accessible data as well as unauthorized read access to a subset of Java SE, Java SE Embedded accessible data. Note: This vulnerability can only be exploited by supplying data to APIs in the specified Component without using Untrusted Java Web Start applications or Untrusted Java applets, such as through a web service. CVSS 3.0 Base Score 4.8 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N).
References
Vulnerable Configurations
  • cpe:2.3:a:oracle:jre:1.7.0:update_251:*:*:*:*:*:*
    cpe:2.3:a:oracle:jre:1.7.0:update_251:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jre:1.8.0:update_241:*:*:*:*:*:*
    cpe:2.3:a:oracle:jre:1.8.0:update_241:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jdk:14.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:jdk:14.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jre:14.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:jre:14.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jdk:11.0.6:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:jdk:11.0.6:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jre:11.0.6:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:jre:11.0.6:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jdk:1.8.0:update241:*:*:*:*:*:*
    cpe:2.3:a:oracle:jdk:1.8.0:update241:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jdk:1.7.0:update251:*:*:*:*:*:*
    cpe:2.3:a:oracle:jdk:1.7.0:update251:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:8:-:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:8:-:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:8:update102:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:8:update102:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:8:update112:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:8:update112:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:8:update152:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:8:update152:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:8:update162:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:8:update162:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:8:update172:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:8:update172:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:8:update192:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:8:update192:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:8:update20:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:8:update20:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:8:update202:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:8:update202:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:8:update212:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:8:update212:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:8:update40:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:8:update40:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:8:update60:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:8:update60:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:8:update66:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:8:update66:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:8:update72:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:8:update72:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:8:update92:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:8:update92:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:7:update241:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:7:update241:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:7:update80:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:7:update80:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:7:update85:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:7:update85:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:7:-:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:7:-:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:8:update241:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:8:update241:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:8:update65:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:8:update65:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:8:update71:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:8:update71:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:8:update73:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:8:update73:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:8:update74:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:8:update74:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:8:update77:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:8:update77:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:8:update91:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:8:update91:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:8:update101:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:8:update101:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:8:update111:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:8:update111:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:8:update121:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:8:update121:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:8:update131:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:8:update131:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:8:update141:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:8:update141:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:8:update151:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:8:update151:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:8:update161:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:8:update161:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:8:update171:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:8:update171:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:8:update181:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:8:update181:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:8:update191:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:8:update191:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:8:update201:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:8:update201:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:8:update211:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:8:update211:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:8:update45:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:8:update45:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:8:update51:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:8:update51:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:8:update25:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:8:update25:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:8:update31:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:8:update31:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:8:update5:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:8:update5:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:8:update11:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:8:update11:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:8:update221:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:8:update221:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:8:update231:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:8:update231:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:14:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:14:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:11:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:11:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:11.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:11.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:11.0.2:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:11.0.2:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:11.0.3:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:11.0.3:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:11.0.4:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:11.0.4:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:11.0.5:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:11.0.5:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:11.0.6:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:11.0.6:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:7:update251:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:7:update251:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:7:update231:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:7:update231:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:7:update221:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:7:update221:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:7:update211:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:7:update211:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:7:update201:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:7:update201:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:7:update191:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:7:update191:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:7:update151:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:7:update151:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:7:update161:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:7:update161:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:7:update171:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:7:update171:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:7:update181:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:7:update181:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:7:update101:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:7:update101:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:7:update111:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:7:update111:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:7:update121:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:7:update121:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:7:update131:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:7:update131:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:7:update141:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:7:update141:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:7:update1:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:7:update1:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:7:update10:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:7:update10:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:7:update11:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:7:update11:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:7:update13:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:7:update13:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:7:update15:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:7:update15:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:7:update17:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:7:update17:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:7:update2:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:7:update2:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:7:update21:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:7:update21:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:7:update25:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:7:update25:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:7:update3:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:7:update3:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:7:update4:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:7:update4:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:7:update40:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:7:update40:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:7:update45:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:7:update45:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:7:update5:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:7:update5:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:7:update51:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:7:update51:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:7:update55:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:7:update55:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:7:update6:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:7:update6:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:7:update60:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:7:update60:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:7:update65:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:7:update65:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:7:update67:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:7:update67:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:7:update7:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:7:update7:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:7:update72:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:7:update72:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:7:update76:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:7:update76:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:7:update9:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:7:update9:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:7:update91:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:7:update91:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:7:update95:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:7:update95:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:7:update97:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:7:update97:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:7:update99:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:7:update99:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:13:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:13:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:13.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:13.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:openjdk:13.0.2:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:openjdk:13.0.2:*:*:*:*:*:*:*
  • cpe:2.3:a:netapp:cloud_backup:-:*:*:*:*:*:*:*
    cpe:2.3:a:netapp:cloud_backup:-:*:*:*:*:*:*:*
  • cpe:2.3:a:netapp:steelstore_cloud_integrated_storage:-:*:*:*:*:*:*:*
    cpe:2.3:a:netapp:steelstore_cloud_integrated_storage:-:*:*:*:*:*:*:*
  • cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:sap:*:*
    cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:sap:*:*
  • cpe:2.3:a:netapp:oncommand_workflow_automation:-:*:*:*:*:*:*:*
    cpe:2.3:a:netapp:oncommand_workflow_automation:-:*:*:*:*:*:*:*
  • cpe:2.3:a:netapp:storagegrid:-:*:*:*:*:*:*:*
    cpe:2.3:a:netapp:storagegrid:-:*:*:*:*:*:*:*
  • cpe:2.3:a:netapp:storagegrid:9.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:netapp:storagegrid:9.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:netapp:storagegrid:9.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:netapp:storagegrid:9.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:netapp:storagegrid:9.0.2:*:*:*:*:*:*:*
    cpe:2.3:a:netapp:storagegrid:9.0.2:*:*:*:*:*:*:*
  • cpe:2.3:a:netapp:storagegrid:9.0.4:*:*:*:*:*:*:*
    cpe:2.3:a:netapp:storagegrid:9.0.4:*:*:*:*:*:*:*
  • cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*
    cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*
  • cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:windows:*:*
    cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:windows:*:*
  • cpe:2.3:a:netapp:active_iq_unified_manager:7.3:*:*:*:*:windows:*:*
    cpe:2.3:a:netapp:active_iq_unified_manager:7.3:*:*:*:*:windows:*:*
  • cpe:2.3:a:netapp:active_iq_unified_manager:9.5:*:*:*:*:vsphere:*:*
    cpe:2.3:a:netapp:active_iq_unified_manager:9.5:*:*:*:*:vsphere:*:*
  • cpe:2.3:a:netapp:active_iq_unified_manager:9.6:*:*:*:*:vsphere:*:*
    cpe:2.3:a:netapp:active_iq_unified_manager:9.6:*:*:*:*:vsphere:*:*
  • cpe:2.3:a:netapp:e-series_santricity_os_controller:11.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:netapp:e-series_santricity_os_controller:11.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:netapp:e-series_santricity_os_controller:11.20:*:*:*:*:*:*:*
    cpe:2.3:a:netapp:e-series_santricity_os_controller:11.20:*:*:*:*:*:*:*
  • cpe:2.3:a:netapp:e-series_santricity_os_controller:11.25:*:*:*:*:*:*:*
    cpe:2.3:a:netapp:e-series_santricity_os_controller:11.25:*:*:*:*:*:*:*
  • cpe:2.3:a:netapp:e-series_santricity_os_controller:11.30:*:*:*:*:*:*:*
    cpe:2.3:a:netapp:e-series_santricity_os_controller:11.30:*:*:*:*:*:*:*
  • cpe:2.3:a:netapp:e-series_santricity_os_controller:11.30.5r3:*:*:*:*:*:*:*
    cpe:2.3:a:netapp:e-series_santricity_os_controller:11.30.5r3:*:*:*:*:*:*:*
  • cpe:2.3:a:netapp:e-series_santricity_os_controller:11.40:*:*:*:*:*:*:*
    cpe:2.3:a:netapp:e-series_santricity_os_controller:11.40:*:*:*:*:*:*:*
  • cpe:2.3:a:netapp:e-series_santricity_os_controller:11.40.3r2:*:*:*:*:*:*:*
    cpe:2.3:a:netapp:e-series_santricity_os_controller:11.40.3r2:*:*:*:*:*:*:*
  • cpe:2.3:a:netapp:e-series_santricity_os_controller:11.40.5:*:*:*:*:*:*:*
    cpe:2.3:a:netapp:e-series_santricity_os_controller:11.40.5:*:*:*:*:*:*:*
  • cpe:2.3:a:netapp:e-series_santricity_os_controller:11.50.1:*:*:*:*:*:*:*
    cpe:2.3:a:netapp:e-series_santricity_os_controller:11.50.1:*:*:*:*:*:*:*
  • cpe:2.3:a:netapp:e-series_santricity_os_controller:11.50.2:-:*:*:*:*:*:*
    cpe:2.3:a:netapp:e-series_santricity_os_controller:11.50.2:-:*:*:*:*:*:*
  • cpe:2.3:a:netapp:e-series_santricity_os_controller:11.50.2:p1:*:*:*:*:*:*
    cpe:2.3:a:netapp:e-series_santricity_os_controller:11.50.2:p1:*:*:*:*:*:*
  • cpe:2.3:a:netapp:e-series_santricity_os_controller:11.60:*:*:*:*:*:*:*
    cpe:2.3:a:netapp:e-series_santricity_os_controller:11.60:*:*:*:*:*:*:*
  • cpe:2.3:a:netapp:e-series_santricity_os_controller:11.60.0:*:*:*:*:*:*:*
    cpe:2.3:a:netapp:e-series_santricity_os_controller:11.60.0:*:*:*:*:*:*:*
  • cpe:2.3:a:netapp:e-series_santricity_os_controller:11.60.1:*:*:*:*:*:*:*
    cpe:2.3:a:netapp:e-series_santricity_os_controller:11.60.1:*:*:*:*:*:*:*
  • cpe:2.3:a:netapp:e-series_santricity_os_controller:11.60.3:*:*:*:*:*:*:*
    cpe:2.3:a:netapp:e-series_santricity_os_controller:11.60.3:*:*:*:*:*:*:*
  • cpe:2.3:a:netapp:e-series_santricity_os_controller:11.70.1:*:*:*:*:*:*:*
    cpe:2.3:a:netapp:e-series_santricity_os_controller:11.70.1:*:*:*:*:*:*:*
  • cpe:2.3:a:netapp:e-series_santricity_os_controller:11.70.2:*:*:*:*:*:*:*
    cpe:2.3:a:netapp:e-series_santricity_os_controller:11.70.2:*:*:*:*:*:*:*
  • cpe:2.3:a:netapp:snapmanager:-:-:*:*:*:oracle:*:*
    cpe:2.3:a:netapp:snapmanager:-:-:*:*:*:oracle:*:*
  • cpe:2.3:a:netapp:7-mode_transition_tool:-:*:*:*:*:*:*:*
    cpe:2.3:a:netapp:7-mode_transition_tool:-:*:*:*:*:*:*:*
  • cpe:2.3:a:netapp:e-series_santricity_web_services:-:*:*:*:*:web_services_proxy:*:*
    cpe:2.3:a:netapp:e-series_santricity_web_services:-:*:*:*:*:web_services_proxy:*:*
  • cpe:2.3:a:netapp:plug-in_for_symantec_netbackup:-:*:*:*:*:*:*:*
    cpe:2.3:a:netapp:plug-in_for_symantec_netbackup:-:*:*:*:*:*:*:*
  • cpe:2.3:a:netapp:santricity_unified_manager:-:*:*:*:*:*:*:*
    cpe:2.3:a:netapp:santricity_unified_manager:-:*:*:*:*:*:*:*
  • cpe:2.3:a:netapp:e-series_performance_analyzer:-:*:*:*:*:*:*:*
    cpe:2.3:a:netapp:e-series_performance_analyzer:-:*:*:*:*:*:*:*
  • cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
    cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
  • cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
    cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
  • cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
    cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
  • cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*
    cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*
  • cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*
    cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*
  • cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*
    cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*
  • cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*
    cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*
  • cpe:2.3:o:opensuse:leap:15.2:*:*:*:*:*:*:*
    cpe:2.3:o:opensuse:leap:15.2:*:*:*:*:*:*:*
  • cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
    cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
  • cpe:2.3:o:canonical:ubuntu_linux:19.10:*:*:*:*:*:*:*
    cpe:2.3:o:canonical:ubuntu_linux:19.10:*:*:*:*:*:*:*
  • cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*
    cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*
CVSS
Base: 5.8 (as of 27-10-2022 - 23:01)
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL NONE
cvss-vector via4 AV:N/AC:M/Au:N/C:P/I:P/A:N
redhat via4
rpms
  • java-1.8.0-openjdk-1:1.8.0.252.b09-2.el6_10
  • java-1.8.0-openjdk-debug-1:1.8.0.252.b09-2.el6_10
  • java-1.8.0-openjdk-debuginfo-1:1.8.0.252.b09-2.el6_10
  • java-1.8.0-openjdk-demo-1:1.8.0.252.b09-2.el6_10
  • java-1.8.0-openjdk-demo-debug-1:1.8.0.252.b09-2.el6_10
  • java-1.8.0-openjdk-devel-1:1.8.0.252.b09-2.el6_10
  • java-1.8.0-openjdk-devel-debug-1:1.8.0.252.b09-2.el6_10
  • java-1.8.0-openjdk-headless-1:1.8.0.252.b09-2.el6_10
  • java-1.8.0-openjdk-headless-debug-1:1.8.0.252.b09-2.el6_10
  • java-1.8.0-openjdk-javadoc-1:1.8.0.252.b09-2.el6_10
  • java-1.8.0-openjdk-javadoc-debug-1:1.8.0.252.b09-2.el6_10
  • java-1.8.0-openjdk-src-1:1.8.0.252.b09-2.el6_10
  • java-1.8.0-openjdk-src-debug-1:1.8.0.252.b09-2.el6_10
  • java-1.7.0-openjdk-1:1.7.0.261-2.6.22.2.el7_8
  • java-1.7.0-openjdk-accessibility-1:1.7.0.261-2.6.22.2.el7_8
  • java-1.7.0-openjdk-debuginfo-1:1.7.0.261-2.6.22.2.el7_8
  • java-1.7.0-openjdk-demo-1:1.7.0.261-2.6.22.2.el7_8
  • java-1.7.0-openjdk-devel-1:1.7.0.261-2.6.22.2.el7_8
  • java-1.7.0-openjdk-headless-1:1.7.0.261-2.6.22.2.el7_8
  • java-1.7.0-openjdk-javadoc-1:1.7.0.261-2.6.22.2.el7_8
  • java-1.7.0-openjdk-src-1:1.7.0.261-2.6.22.2.el7_8
  • java-1.7.0-openjdk-1:1.7.0.261-2.6.22.1.el6_10
  • java-1.7.0-openjdk-debuginfo-1:1.7.0.261-2.6.22.1.el6_10
  • java-1.7.0-openjdk-demo-1:1.7.0.261-2.6.22.1.el6_10
  • java-1.7.0-openjdk-devel-1:1.7.0.261-2.6.22.1.el6_10
  • java-1.7.0-openjdk-javadoc-1:1.7.0.261-2.6.22.1.el6_10
  • java-1.7.0-openjdk-src-1:1.7.0.261-2.6.22.1.el6_10
  • java-11-openjdk-1:11.0.7.10-4.el7_8
  • java-11-openjdk-debuginfo-1:11.0.7.10-4.el7_8
  • java-11-openjdk-demo-1:11.0.7.10-4.el7_8
  • java-11-openjdk-devel-1:11.0.7.10-4.el7_8
  • java-11-openjdk-headless-1:11.0.7.10-4.el7_8
  • java-11-openjdk-javadoc-1:11.0.7.10-4.el7_8
  • java-11-openjdk-javadoc-zip-1:11.0.7.10-4.el7_8
  • java-11-openjdk-jmods-1:11.0.7.10-4.el7_8
  • java-11-openjdk-src-1:11.0.7.10-4.el7_8
  • java-1.8.0-openjdk-1:1.8.0.252.b09-2.el7_8
  • java-1.8.0-openjdk-accessibility-1:1.8.0.252.b09-2.el7_8
  • java-1.8.0-openjdk-debuginfo-1:1.8.0.252.b09-2.el7_8
  • java-1.8.0-openjdk-demo-1:1.8.0.252.b09-2.el7_8
  • java-1.8.0-openjdk-devel-1:1.8.0.252.b09-2.el7_8
  • java-1.8.0-openjdk-headless-1:1.8.0.252.b09-2.el7_8
  • java-1.8.0-openjdk-javadoc-1:1.8.0.252.b09-2.el7_8
  • java-1.8.0-openjdk-javadoc-zip-1:1.8.0.252.b09-2.el7_8
  • java-1.8.0-openjdk-src-1:1.8.0.252.b09-2.el7_8
  • java-11-openjdk-1:11.0.7.10-1.el8_1
  • java-11-openjdk-debuginfo-1:11.0.7.10-1.el8_1
  • java-11-openjdk-debugsource-1:11.0.7.10-1.el8_1
  • java-11-openjdk-demo-1:11.0.7.10-1.el8_1
  • java-11-openjdk-devel-1:11.0.7.10-1.el8_1
  • java-11-openjdk-devel-debuginfo-1:11.0.7.10-1.el8_1
  • java-11-openjdk-devel-slowdebug-debuginfo-1:11.0.7.10-1.el8_1
  • java-11-openjdk-headless-1:11.0.7.10-1.el8_1
  • java-11-openjdk-headless-debuginfo-1:11.0.7.10-1.el8_1
  • java-11-openjdk-headless-slowdebug-debuginfo-1:11.0.7.10-1.el8_1
  • java-11-openjdk-javadoc-1:11.0.7.10-1.el8_1
  • java-11-openjdk-javadoc-zip-1:11.0.7.10-1.el8_1
  • java-11-openjdk-jmods-1:11.0.7.10-1.el8_1
  • java-11-openjdk-slowdebug-debuginfo-1:11.0.7.10-1.el8_1
  • java-11-openjdk-src-1:11.0.7.10-1.el8_1
  • java-1.8.0-openjdk-1:1.8.0.252.b09-2.el8_1
  • java-1.8.0-openjdk-accessibility-1:1.8.0.252.b09-2.el8_1
  • java-1.8.0-openjdk-debuginfo-1:1.8.0.252.b09-2.el8_1
  • java-1.8.0-openjdk-debugsource-1:1.8.0.252.b09-2.el8_1
  • java-1.8.0-openjdk-demo-1:1.8.0.252.b09-2.el8_1
  • java-1.8.0-openjdk-demo-debuginfo-1:1.8.0.252.b09-2.el8_1
  • java-1.8.0-openjdk-demo-slowdebug-debuginfo-1:1.8.0.252.b09-2.el8_1
  • java-1.8.0-openjdk-devel-1:1.8.0.252.b09-2.el8_1
  • java-1.8.0-openjdk-devel-debuginfo-1:1.8.0.252.b09-2.el8_1
  • java-1.8.0-openjdk-devel-slowdebug-debuginfo-1:1.8.0.252.b09-2.el8_1
  • java-1.8.0-openjdk-headless-1:1.8.0.252.b09-2.el8_1
  • java-1.8.0-openjdk-headless-debuginfo-1:1.8.0.252.b09-2.el8_1
  • java-1.8.0-openjdk-headless-slowdebug-debuginfo-1:1.8.0.252.b09-2.el8_1
  • java-1.8.0-openjdk-javadoc-1:1.8.0.252.b09-2.el8_1
  • java-1.8.0-openjdk-javadoc-zip-1:1.8.0.252.b09-2.el8_1
  • java-1.8.0-openjdk-slowdebug-debuginfo-1:1.8.0.252.b09-2.el8_1
  • java-1.8.0-openjdk-src-1:1.8.0.252.b09-2.el8_1
  • java-1.8.0-openjdk-1:1.8.0.252.b09-2.el8_0
  • java-1.8.0-openjdk-accessibility-1:1.8.0.252.b09-2.el8_0
  • java-1.8.0-openjdk-debuginfo-1:1.8.0.252.b09-2.el8_0
  • java-1.8.0-openjdk-debugsource-1:1.8.0.252.b09-2.el8_0
  • java-1.8.0-openjdk-demo-1:1.8.0.252.b09-2.el8_0
  • java-1.8.0-openjdk-demo-debuginfo-1:1.8.0.252.b09-2.el8_0
  • java-1.8.0-openjdk-demo-slowdebug-debuginfo-1:1.8.0.252.b09-2.el8_0
  • java-1.8.0-openjdk-devel-1:1.8.0.252.b09-2.el8_0
  • java-1.8.0-openjdk-devel-debuginfo-1:1.8.0.252.b09-2.el8_0
  • java-1.8.0-openjdk-devel-slowdebug-debuginfo-1:1.8.0.252.b09-2.el8_0
  • java-1.8.0-openjdk-headless-1:1.8.0.252.b09-2.el8_0
  • java-1.8.0-openjdk-headless-debuginfo-1:1.8.0.252.b09-2.el8_0
  • java-1.8.0-openjdk-headless-slowdebug-debuginfo-1:1.8.0.252.b09-2.el8_0
  • java-1.8.0-openjdk-javadoc-1:1.8.0.252.b09-2.el8_0
  • java-1.8.0-openjdk-javadoc-zip-1:1.8.0.252.b09-2.el8_0
  • java-1.8.0-openjdk-slowdebug-debuginfo-1:1.8.0.252.b09-2.el8_0
  • java-1.8.0-openjdk-src-1:1.8.0.252.b09-2.el8_0
  • java-11-openjdk-1:11.0.7.10-1.el8_0
  • java-11-openjdk-debuginfo-1:11.0.7.10-1.el8_0
  • java-11-openjdk-debugsource-1:11.0.7.10-1.el8_0
  • java-11-openjdk-demo-1:11.0.7.10-1.el8_0
  • java-11-openjdk-devel-1:11.0.7.10-1.el8_0
  • java-11-openjdk-devel-debuginfo-1:11.0.7.10-1.el8_0
  • java-11-openjdk-devel-slowdebug-debuginfo-1:11.0.7.10-1.el8_0
  • java-11-openjdk-headless-1:11.0.7.10-1.el8_0
  • java-11-openjdk-headless-debuginfo-1:11.0.7.10-1.el8_0
  • java-11-openjdk-headless-slowdebug-debuginfo-1:11.0.7.10-1.el8_0
  • java-11-openjdk-javadoc-1:11.0.7.10-1.el8_0
  • java-11-openjdk-javadoc-zip-1:11.0.7.10-1.el8_0
  • java-11-openjdk-jmods-1:11.0.7.10-1.el8_0
  • java-11-openjdk-slowdebug-debuginfo-1:11.0.7.10-1.el8_0
  • java-11-openjdk-src-1:11.0.7.10-1.el8_0
  • java-1.7.1-ibm-1:1.7.1.4.65-1jpp.1.el6_10
  • java-1.7.1-ibm-demo-1:1.7.1.4.65-1jpp.1.el6_10
  • java-1.7.1-ibm-devel-1:1.7.1.4.65-1jpp.1.el6_10
  • java-1.7.1-ibm-jdbc-1:1.7.1.4.65-1jpp.1.el6_10
  • java-1.7.1-ibm-plugin-1:1.7.1.4.65-1jpp.1.el6_10
  • java-1.7.1-ibm-src-1:1.7.1.4.65-1jpp.1.el6_10
  • java-1.8.0-ibm-1:1.8.0.6.10-1jpp.1.el7
  • java-1.8.0-ibm-demo-1:1.8.0.6.10-1jpp.1.el7
  • java-1.8.0-ibm-devel-1:1.8.0.6.10-1jpp.1.el7
  • java-1.8.0-ibm-jdbc-1:1.8.0.6.10-1jpp.1.el7
  • java-1.8.0-ibm-plugin-1:1.8.0.6.10-1jpp.1.el7
  • java-1.8.0-ibm-src-1:1.8.0.6.10-1jpp.1.el7
  • java-1.7.1-ibm-1:1.7.1.4.65-1jpp.1.el7
  • java-1.7.1-ibm-demo-1:1.7.1.4.65-1jpp.1.el7
  • java-1.7.1-ibm-devel-1:1.7.1.4.65-1jpp.1.el7
  • java-1.7.1-ibm-jdbc-1:1.7.1.4.65-1jpp.1.el7
  • java-1.7.1-ibm-plugin-1:1.7.1.4.65-1jpp.1.el7
  • java-1.7.1-ibm-src-1:1.7.1.4.65-1jpp.1.el7
  • java-1.8.0-ibm-1:1.8.0.6.10-1jpp.1.el6_10
  • java-1.8.0-ibm-demo-1:1.8.0.6.10-1jpp.1.el6_10
  • java-1.8.0-ibm-devel-1:1.8.0.6.10-1jpp.1.el6_10
  • java-1.8.0-ibm-jdbc-1:1.8.0.6.10-1jpp.1.el6_10
  • java-1.8.0-ibm-plugin-1:1.8.0.6.10-1jpp.1.el6_10
  • java-1.8.0-ibm-src-1:1.8.0.6.10-1jpp.1.el6_10
  • java-1.8.0-ibm-1:1.8.0.6.10-1.el8_2
  • java-1.8.0-ibm-demo-1:1.8.0.6.10-1.el8_2
  • java-1.8.0-ibm-devel-1:1.8.0.6.10-1.el8_2
  • java-1.8.0-ibm-headless-1:1.8.0.6.10-1.el8_2
  • java-1.8.0-ibm-jdbc-1:1.8.0.6.10-1.el8_2
  • java-1.8.0-ibm-plugin-1:1.8.0.6.10-1.el8_2
  • java-1.8.0-ibm-src-1:1.8.0.6.10-1.el8_2
  • java-1.8.0-ibm-webstart-1:1.8.0.6.10-1.el8_2
refmap via4
confirm https://security.netapp.com/advisory/ntap-20200416-0004/
debian
  • DSA-4662
  • DSA-4668
fedora
  • FEDORA-2020-21ca991b3b
  • FEDORA-2020-5386fe3bbb
  • FEDORA-2020-a60ad9d4ec
gentoo GLSA-202006-22
misc https://www.oracle.com/security-alerts/cpuapr2020.html
mlist [debian-lts-announce] 20200429 [SECURITY] [DLA 2193-1] openjdk-7 security update
suse
  • openSUSE-SU-2020:0757
  • openSUSE-SU-2020:0800
  • openSUSE-SU-2020:0841
ubuntu USN-4337-1
Last major update 27-10-2022 - 23:01
Published 15-04-2020 - 14:15
Last modified 27-10-2022 - 23:01
Back to Top