CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2002-2022

Format string vulnerability in Kaffe OpenVM 1.0.6 and earlier allows local users to execute arbitrary code, when a java.lang.NoClassDefFoundError is thrown, via format specifiers in the forName attribute.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 20.9%

CVSS Severity

CVSS v2 Score 7.2

References

http://cert.uni-stuttgart.de/archive/vuln-dev/2002/03/msg00050.html
http://www.iss.net/security_center/static/8399.php
http://www.securityfocus.com/bid/4249
http://cert.uni-stuttgart.de/archive/vuln-dev/2002/03/msg00050.html
http://www.iss.net/security_center/static/8399.php
http://www.securityfocus.com/bid/4249

Products affected by CVE-2002-2022

Kaffe » Kaffe Openvm » Version: 1.0.6

cpe:2.3:a:kaffe:kaffe_openvm:1.0.6

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2002-2022

Products

Pricing

Contact Us