CVE-2013-5840

Oracle JDK < 1.5.0 and JRE < 1.7.0 - Remote Information Disclosure

Title source: llm

Description

Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality via unknown vectors related to Libraries.

References (26)

Core 26

Core References

Mailing List vendor-advisory x_refsource_apple

http://lists.apple.com/archives/security-announce/2013/Oct/msg00001.html

Vendor Advisory vendor-advisory x_refsource_redhat

http://rhn.redhat.com/errata/RHSA-2013-1508.html

Vendor Advisory vendor-advisory x_refsource_redhat

http://rhn.redhat.com/errata/RHSA-2013-1505.html

Vendor Advisory vendor-advisory x_refsource_redhat

http://rhn.redhat.com/errata/RHSA-2013-1793.html

Vendor Advisory vendor-advisory x_refsource_redhat

http://rhn.redhat.com/errata/RHSA-2013-1509.html

Vendor Advisory vendor-advisory x_refsource_redhat

http://rhn.redhat.com/errata/RHSA-2013-1507.html

Vendor Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2014:0414

Vendor Advisory vendor-advisory x_refsource_ubuntu

http://www.ubuntu.com/usn/USN-2033-1

Vendor Advisory vendor-advisory x_refsource_ubuntu

http://www.ubuntu.com/usn/USN-2089-1

Mailing List vendor-advisory x_refsource_suse

http://lists.opensuse.org/opensuse-security-announce/2013-11/msg00013.html

Various Sources x_refsource_confirm

http://www-01.ibm.com/support/docview.wss?uid=swg21655201

Mailing List vendor-advisory x_refsource_suse

http://lists.opensuse.org/opensuse-security-announce/2013-11/msg00010.html

Vendor Advisory x_refsource_confirm

http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html

Vendor Advisory x_refsource_confirm

http://support.apple.com/kb/HT5982

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/56338

Third Party Advisory vendor-advisory x_refsource_gentoo

http://security.gentoo.org/glsa/glsa-201406-32.xml

Vendor Advisory vendor-advisory x_refsource_redhat

http://rhn.redhat.com/errata/RHSA-2013-1447.html

Vendor Advisory vendor-advisory x_refsource_redhat

http://rhn.redhat.com/errata/RHSA-2013-1440.html

Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18990

Mailing List vendor-advisory x_refsource_hp

http://marc.info/?l=bugtraq&m=138674073720143&w=2

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/63148

Mailing List vendor-advisory x_refsource_hp

http://marc.info/?l=bugtraq&m=138674031212883&w=2

Mailing List vendor-advisory x_refsource_suse

http://lists.opensuse.org/opensuse-updates/2013-11/msg00023.html

Vendor Advisory vendor-advisory x_refsource_redhat

http://rhn.redhat.com/errata/RHSA-2013-1451.html

Various Sources x_refsource_confirm

http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS13-025/index.html

Issue Tracking x_refsource_confirm

http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=1018831

Scores

EPSS 0.0173

EPSS Percentile 82.7%

Details

Status published

Products (7)

oracle/jdk 1.5.0 update36 (5 CPE variants)

oracle/jdk 1.7.0 (16 CPE variants)

oracle/jdk 1.6.0 update22 (20 CPE variants)

oracle/jdk < 1.5.0

oracle/jdk < 1.6.0

oracle/jdk < 1.7.0

oracle/jre 1.7.0 (6 CPE variants)

Published Oct 16, 2013

Tracked Since Feb 18, 2026