Vulnerability Details CVE-2011-3553
Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, and JRockit R28.1.4 and earlier allows remote authenticated users to affect confidentiality, related to JAXWS.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 41.3%
CVSS Severity
CVSS v2 Score 3.5
References
- http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00049.html
- http://marc.info/?l=bugtraq&m=132750579901589&w=2
- http://marc.info/?l=bugtraq&m=132750579901589&w=2
- http://marc.info/?l=bugtraq&m=134254866602253&w=2
- http://marc.info/?l=bugtraq&m=134254957702612&w=2
- http://marc.info/?l=bugtraq&m=134254957702612&w=2
- http://osvdb.org/76512
- http://rhn.redhat.com/errata/RHSA-2013-1455.html
- http://secunia.com/advisories/48308
- http://security.gentoo.org/glsa/glsa-201406-32.xml
- http://www.ibm.com/developerworks/java/jdk/alerts/
- http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html
- http://www.redhat.com/support/errata/RHSA-2011-1384.html
- http://www.securityfocus.com/bid/50246
- http://www.securitytracker.com/id?1026215
- http://www.ubuntu.com/usn/USN-1263-1
- https://exchange.xforce.ibmcloud.com/vulnerabilities/70840
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14311
- http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00049.html
- http://marc.info/?l=bugtraq&m=132750579901589&w=2
- http://marc.info/?l=bugtraq&m=132750579901589&w=2
- http://marc.info/?l=bugtraq&m=134254866602253&w=2
- http://marc.info/?l=bugtraq&m=134254957702612&w=2
- http://marc.info/?l=bugtraq&m=134254957702612&w=2
- http://osvdb.org/76512
- http://rhn.redhat.com/errata/RHSA-2013-1455.html
- http://secunia.com/advisories/48308
- http://security.gentoo.org/glsa/glsa-201406-32.xml
- http://www.ibm.com/developerworks/java/jdk/alerts/
- http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html
- http://www.redhat.com/support/errata/RHSA-2011-1384.html
- http://www.securityfocus.com/bid/50246
- http://www.securitytracker.com/id?1026215
- http://www.ubuntu.com/usn/USN-1263-1
- https://exchange.xforce.ibmcloud.com/vulnerabilities/70840
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14311
Products affected by CVE-2011-3553
-
cpe:2.3:a:oracle:jrockit:r27.7.0
-
cpe:2.3:a:oracle:jrockit:r27.7.1
-
cpe:2.3:a:oracle:jrockit:r27.7.2
-
cpe:2.3:a:oracle:jrockit:r27.7.3
-
cpe:2.3:a:oracle:jrockit:r27.7.4
-
cpe:2.3:a:oracle:jrockit:r27.7.5
-
cpe:2.3:a:oracle:jrockit:r27.7.6
-
cpe:2.3:a:oracle:jrockit:r27.7.7
-
cpe:2.3:a:oracle:jrockit:r27.8.1
-
cpe:2.3:a:oracle:jrockit:r27.8.2
-
cpe:2.3:a:oracle:jrockit:r27.8.4
-
cpe:2.3:a:oracle:jrockit:r28.0.0
-
cpe:2.3:a:oracle:jrockit:r28.0.1
-
cpe:2.3:a:oracle:jrockit:r28.0.2
-
cpe:2.3:a:oracle:jrockit:r28.1.0
-
cpe:2.3:a:oracle:jrockit:r28.1.1
-
cpe:2.3:a:oracle:jrockit:r28.1.3
-
cpe:2.3:a:oracle:jrockit:r28.1.4
-
cpe:2.3:a:sun:jdk:*
-
cpe:2.3:a:sun:jdk:1.6.0
-
cpe:2.3:a:sun:jdk:1.7.0
-
cpe:2.3:a:sun:jre:*
-
cpe:2.3:a:sun:jre:1.6.0
-
cpe:2.3:a:sun:jre:1.7.0