Kaspersky Threats

Beschreibung

Multiple serious vulnerabilities were found in Oracle Java SE. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, cause denial of service, bypass security restrictions.

Below is a complete list of vulnerabilities:

An unspecified vulnerability in Scripting component can be exploited remotely to execute arbitrary code;
An unspecified vulnerability in JavaFX component can be exploited remotely to execute arbitrary code;
An unspecified vulnerability in Hotspot component can be exploited remotely to execute arbitrary code;
An unspecified vulnerability in JNDI component can be exploited locally to execute arbitrary code;
An unspecified vulnerability in Serviceability component can be exploited remotely to obtain sensitive information;
An unspecified vulnerability in JSSE component can be exploited remotely to obtain sensitive information;
An unspecified vulnerability in Sound component can be exploited remotely to cause denial of service;
An unspecified vulnerability in Sound component can be exploited remotely to obtain sensitive information;
An unspecified vulnerability in Utility component can be exploited remotely to bypass security restrictions;
An unspecified vulnerability in libpng can be exploited remotely to cause denial of service;
An unspecified vulnerability in Security component can be exploited remotely to bypass security restrictions;
An unspecified vulnerability in Networking component can be exploited remotely to bypass security restrictions;

Ursprüngliche Informationshinweise

https://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html#AppendixJAVA

CVE Liste

CVE-2018-3183
critical
CVE-2018-3209
critical
CVE-2018-3169
critical
CVE-2018-3149
critical
CVE-2018-3211
critical
CVE-2018-3180
critical
CVE-2018-3214
critical
CVE-2018-3157
critical
CVE-2018-3150
critical
CVE-2018-13785
critical
CVE-2018-3136
critical
CVE-2018-3139
critical

Mehr erfahren

Informieren Sie sich über die Statistiken der in Ihrer Region verbreiteten Sicherheitslücken statistics.securelist.com

Sie haben einen Fehler in der Beschreibung der Schwachstelle gefunden? Mitteilen!