CVE-2013-0809
Last modified
CVE-2013-0809 is a vulnerability of currently unknown severity. Unspecified vulnerability in the 2D component in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 15 and earlier, 6 Update 41 and earlier, and 5.0 Update 40 and earlier allows remote attackers to execute arbitrary code via unknown vectors, a different vulnerability than CVE-2013-1493.. EPSS estimates a 10.55% chance of exploitation in the next 30 days.
Description
Unspecified vulnerability in the 2D component in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 15 and earlier, 6 Update 41 and earlier, and 5.0 Update 40 and earlier allows remote attackers to execute arbitrary code via unknown vectors, a different vulnerability than CVE-2013-1493.
Metrics
Affected Software
| Vendor | Product | Versions | Update |
|---|---|---|---|
| Oracle | Jre | <= 1.6.0 | Update41 |
| Oracle | Jre | 1.6.0 | Update22 |
| Sun | Jre | 1.6.0 | — |
| Oracle | Jdk | <= 1.6.0 | Update41 |
| Oracle | Jdk | 1.6.0 | Update22 |
| Sun | Jdk | 1.6.0 | — |
| Oracle | Jre | <= 1.5.0 | Update40 |
| Oracle | Jre | 1.5.0 | Update36 |
| Sun | Jre | 1.5.0 | — |
| Oracle | Jdk | <= 1.5.0 | Update40 |
| Oracle | Jdk | 1.5.0 | Update36 |
| Sun | Jdk | 1.5.0 | — |
| Oracle | Jre | <= 1.7.0 | Update15 |
| Oracle | Jre | 1.7.0 | — |
| Oracle | Jdk | <= 1.7.0 | Update15 |
| Oracle | Jdk | 1.7.0 | — |
References
- http://www.kb.cert.org/vuls/id/688246US Government Resource
- http://www.us-cert.gov/ncas/alerts/TA13-064AUS Government Resource
- http://www.kb.cert.org/vuls/id/688246US Government Resource
- http://www.us-cert.gov/ncas/alerts/TA13-064AUS Government Resource
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2013-0809?
How severe is CVE-2013-0809?
How do I fix CVE-2013-0809?
Are you affected by CVE-2013-0809?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST