| Vulnerability Name: | CVE-2012-5080 (CCN-79439) | ||||||||||||
| Assigned: | 2012-10-16 | ||||||||||||
| Published: | 2012-10-16 | ||||||||||||
| Updated: | 2017-09-19 | ||||||||||||
| Summary: | Unspecified vulnerability in the JavaFX component in Oracle Java SE JavaFX 2.2 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2012-5078. Per: http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html "Applies to client deployment of Java only. This vulnerability can be exploited only through untrusted Java Web Start applications and untrusted Java applets. (Untrusted Java Web Start applications and untrusted applets run in the Java sandbox with limited privileges.)" | ||||||||||||
| CVSS v3 Severity: | 9.0 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H)
| ||||||||||||
| CVSS v2 Severity: | 7.6 High (CVSS v2 Vector: AV:N/AC:H/Au:N/C:C/I:C/A:C) 5.6 Medium (Temporal CVSS v2 Vector: AV:N/AC:H/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)
5.6 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:H/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)
| ||||||||||||
| Vulnerability Type: | CWE-noinfo | ||||||||||||
| Vulnerability Consequences: | Gain Access | ||||||||||||
| References: | Source: MITRE Type: CNA CVE-2012-5080 Source: SUSE Type: Third Party Advisory SUSE-SU-2012:1398 Source: CCN Type: SA50949 Oracle Java Multiple Vulnerabilities Source: CCN Type: Oracle Web site Oracle Java SE Critical Patch Update Advisory - October 2012 Source: CONFIRM Type: Patch, Vendor Advisory http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html Source: BID Type: Third Party Advisory, VDB Entry 56068 Source: CCN Type: BID-56068 Oracle JavaFX CVE-2012-5080 Remote Security Vulnerability Source: XF Type: UNKNOWN javafx-unspecified-cve20125080(79439) Source: XF Type: UNKNOWN javafx-unspecified-cve20125080(79439) Source: OVAL Type: UNKNOWN oval:org.mitre.oval:def:16221 | ||||||||||||
| Vulnerable Configuration: | Configuration 1: Configuration 2: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||||||
| Oval Definitions | |||||||||||||
| |||||||||||||
| BACK | |||||||||||||