CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-2767

Vulnerability in the Java SE product of Oracle Java SE (component: JSSE). Supported versions that are affected are Java SE: 11.0.6 and 14. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Java SE. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Java SE accessible data as well as unauthorized read access to a subset of Java SE accessible data. Note: Applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 4.8 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N).

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 64.9%

CVSS Severity

CVSS v3 Score 4.8

CVSS v2 Score 5.8

References

Products affected by CVE-2020-2767

Netapp » 7-Mode Transition Tool » Version: N/A

cpe:2.3:a:netapp:7-mode_transition_tool:-
Netapp » Active Iq Unified Manager » Version: N/A

cpe:2.3:a:netapp:active_iq_unified_manager:-
Netapp » Cloud Backup » Version: N/A

cpe:2.3:a:netapp:cloud_backup:-
Netapp » Cloud Secure Agent » Version: N/A

cpe:2.3:a:netapp:cloud_secure_agent:-
Netapp » E-Series Performance Analyzer » Version: N/A

cpe:2.3:a:netapp:e-series_performance_analyzer:-
Netapp » E-Series Santricity Os Controller » Version: 11.0.0

cpe:2.3:a:netapp:e-series_santricity_os_controller:11.0.0
Netapp » E-Series Santricity Os Controller » Version: 11.20

cpe:2.3:a:netapp:e-series_santricity_os_controller:11.20
Netapp » E-Series Santricity Os Controller » Version: 11.25

cpe:2.3:a:netapp:e-series_santricity_os_controller:11.25
Netapp » E-Series Santricity Os Controller » Version: 11.30

cpe:2.3:a:netapp:e-series_santricity_os_controller:11.30
Netapp » E-Series Santricity Os Controller » Version: 11.30.5r3

cpe:2.3:a:netapp:e-series_santricity_os_controller:11.30.5r3
Netapp » E-Series Santricity Os Controller » Version: 11.40

cpe:2.3:a:netapp:e-series_santricity_os_controller:11.40
Netapp » E-Series Santricity Os Controller » Version: 11.40.3r2

cpe:2.3:a:netapp:e-series_santricity_os_controller:11.40.3r2
Netapp » E-Series Santricity Os Controller » Version: 11.40.5

cpe:2.3:a:netapp:e-series_santricity_os_controller:11.40.5
Netapp » E-Series Santricity Os Controller » Version: 11.50.1

cpe:2.3:a:netapp:e-series_santricity_os_controller:11.50.1
Netapp » E-Series Santricity Os Controller » Version: 11.50.2

cpe:2.3:a:netapp:e-series_santricity_os_controller:11.50.2
Netapp » E-Series Santricity Os Controller » Version: 11.60

cpe:2.3:a:netapp:e-series_santricity_os_controller:11.60
Netapp » E-Series Santricity Os Controller » Version: 11.60.0

cpe:2.3:a:netapp:e-series_santricity_os_controller:11.60.0
Netapp » E-Series Santricity Os Controller » Version: 11.60.1

cpe:2.3:a:netapp:e-series_santricity_os_controller:11.60.1
Netapp » E-Series Santricity Os Controller » Version: 11.60.3

cpe:2.3:a:netapp:e-series_santricity_os_controller:11.60.3
Netapp » E-Series Santricity Os Controller » Version: 11.70.1

cpe:2.3:a:netapp:e-series_santricity_os_controller:11.70.1
Netapp » E-Series Santricity Os Controller » Version: 11.70.2

cpe:2.3:a:netapp:e-series_santricity_os_controller:11.70.2
Netapp » E-Series Santricity Web Services » Version: N/A

cpe:2.3:a:netapp:e-series_santricity_web_services:-
Netapp » Oncommand Insight » Version: N/A

cpe:2.3:a:netapp:oncommand_insight:-
Netapp » Oncommand Workflow Automation » Version: N/A

cpe:2.3:a:netapp:oncommand_workflow_automation:-
Netapp » Plug-In For Symantec Netbackup » Version: N/A

cpe:2.3:a:netapp:plug-in_for_symantec_netbackup:-
Netapp » Santricity Unified Manager » Version: N/A

cpe:2.3:a:netapp:santricity_unified_manager:-
Netapp » Snapmanager » Version: N/A

cpe:2.3:a:netapp:snapmanager:-
Netapp » Steelstore Cloud Integrated Storage » Version: N/A

cpe:2.3:a:netapp:steelstore_cloud_integrated_storage:-
Netapp » Storagegrid » Version: N/A

cpe:2.3:a:netapp:storagegrid:-
Netapp » Storagegrid » Version: 9.0.0

cpe:2.3:a:netapp:storagegrid:9.0.0
Netapp » Storagegrid » Version: 9.0.1

cpe:2.3:a:netapp:storagegrid:9.0.1
Netapp » Storagegrid » Version: 9.0.2

cpe:2.3:a:netapp:storagegrid:9.0.2
Netapp » Storagegrid » Version: 9.0.4

cpe:2.3:a:netapp:storagegrid:9.0.4
Oracle » Jdk » Version: 11.0.6

cpe:2.3:a:oracle:jdk:11.0.6
Oracle » Jdk » Version: 14.0.0

cpe:2.3:a:oracle:jdk:14.0.0
Oracle » Jre » Version: 11.0.6

cpe:2.3:a:oracle:jre:11.0.6
Oracle » Jre » Version: 14.0.0

cpe:2.3:a:oracle:jre:14.0.0
Oracle » Openjdk » Version: 11

cpe:2.3:a:oracle:openjdk:11
Oracle » Openjdk » Version: 11.0.1

cpe:2.3:a:oracle:openjdk:11.0.1
Oracle » Openjdk » Version: 11.0.2

cpe:2.3:a:oracle:openjdk:11.0.2
Oracle » Openjdk » Version: 11.0.3

cpe:2.3:a:oracle:openjdk:11.0.3
Oracle » Openjdk » Version: 11.0.4

cpe:2.3:a:oracle:openjdk:11.0.4
Oracle » Openjdk » Version: 11.0.5

cpe:2.3:a:oracle:openjdk:11.0.5
Oracle » Openjdk » Version: 11.0.6

cpe:2.3:a:oracle:openjdk:11.0.6
Oracle » Openjdk » Version: 13

cpe:2.3:a:oracle:openjdk:13
Oracle » Openjdk » Version: 13.0.1

cpe:2.3:a:oracle:openjdk:13.0.1
Oracle » Openjdk » Version: 13.0.2

cpe:2.3:a:oracle:openjdk:13.0.2
Oracle » Openjdk » Version: 14

cpe:2.3:a:oracle:openjdk:14
Oracle » Openjdk » Version: 7

cpe:2.3:a:oracle:openjdk:7
Oracle » Openjdk » Version: 8

cpe:2.3:a:oracle:openjdk:8
Canonical » Ubuntu Linux » Version: 16.04

cpe:2.3:o:canonical:ubuntu_linux:16.04
Canonical » Ubuntu Linux » Version: 18.04

cpe:2.3:o:canonical:ubuntu_linux:18.04
Canonical » Ubuntu Linux » Version: 19.10

cpe:2.3:o:canonical:ubuntu_linux:19.10
Debian » Debian Linux » Version: 10.0

cpe:2.3:o:debian:debian_linux:10.0
Opensuse » Leap » Version: 15.1

cpe:2.3:o:opensuse:leap:15.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-2767

Products

Pricing

Contact Us