CVE-2012-0551

critical

Description

Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE 7 update 4 and earlier and 6 update 32 and earlier, and the GlassFish Enterprise Server component in Oracle Sun Products Suite GlassFish Enterprise Server 3.1.1, allows remote attackers to affect confidentiality and integrity via unknown vectors related to Web Container or Deployment.

References

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16707

http://www.securitytracker.com/id?1026941

http://www.securityfocus.com/bid/53136

http://www.oracle.com/technetwork/topics/security/javacpujun2012-1515912.html

http://www.oracle.com/technetwork/topics/security/cpuapr2012-366314.html

http://www.mandriva.com/security/advisories?name=MDVSA-2013:150

http://rhn.redhat.com/errata/RHSA-2013-1456.html

http://rhn.redhat.com/errata/RHSA-2013-1455.html

http://rhn.redhat.com/errata/RHSA-2012-0734.html

http://marc.info/?l=bugtraq&m=134496371727681&w=2

http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00035.html

http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00032.html

Details

Source: Mitre, NVD

Published: 2012-05-03

Updated: 2022-05-13

Risk Information

CVSS v2

Base Score: 5.8

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:N

Severity: Medium

CVSS v3

Base Score: 9.1

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Severity: Critical