- Home
- CVEs with oval.description==Unspecified+vulnerability+in+the+Java+Runtime+Environment+%28JRE%29+component+in+Oracle+Java+SE+7+Update+17+and+earlier%2C+and+OpenJDK+7%2C+allows+remote+attackers+to+affect+integrity+via+unknown+vectors+related+to+HotSpot.++NOTE%3A+the+previous+information+is+from+the+April+2013+CPU.+Oracle+has+not+commented+on+claims+from+the+original+researcher+that+this+vulnerability+allows+remote+attackers+to+bypass+permission+checks+by+the+MethodHandles+method+and+modify+arbitrary+public+final+fields+using+reflection+and+type+confusion%2C+as+demonstrated+using+integer+and+double+fields+to+disable+the+security+manager.
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top