Kaspersky ID:
KLA11178
Detect Date:
01/16/2018
Updated:
01/22/2024

Description

Multiple serious vulnerabilities have been found in Oracle Java SE. Malicious users can exploit these vulnerabilities possibly possibly to cause denial of service, to gain privileges and to obtain sensitive information.

Below is a complete list of vulnerabilities:

  1. An unspecified vulnerability in the Java SE Deployment component can be exploited remotely possibly to gain privileges;
  2. An unspecified vulnerability in the Java SE, Java SE Embedded, JRockit JNDI component can be exploited remotely possibly to gain privileges;
  3. An unspecified vulnerability in the Java SE Installer component can be exploited locally possibly to gain privileges;
  4. An unspecified vulnerability in the Java SE, Java SE Embedded, JRockit JMX component can be exploited remotely possibly to loss of integrity and obtain sensitive information;
  5. An unspecified vulnerability in the Java SE, Java SE Embedded JGSS component can be exploited remotely possibly to obtain sensitive information;
  6. An unspecified vulnerability in the Java SE, Java SE Embedded Hotspot component can be exploited remotely possibly to loss of integrity;
  7. An unspecified vulnerability in the Java SE, Java SE Embedded AWT component can be exploited remotely possibly to loss of integrity;
  8. An unspecified vulnerability in the Java SE, Java SE Embedded, JRockit JCE component can be exploited remotely possibly to obtain sensitive information;
  9. An unspecified vulnerability in the Java SE, Java SE Embedded, JRockit JGSS component can be exploited remotely possibly to loss of integrity;
  10. An unspecified vulnerability in the Java SE, Java SE Embedded, JRockit Libraries component can be exploited remotely possibly to cause denial of service;
  11. An unspecified vulnerability in the Java SE, JRockit Serialization component can be exploited remotely possibly to cause denial of service;
  12. An unspecified vulnerability in the Java SE, Java SE Embedded, JRockit JNDI component can be exploited remotely possibly to loss of integrity and cause denial of service;
  13. An unspecified vulnerability in the Java SE JavaFX component can be exploited remotely possibly to obtain sensitive information;
  14. An unspecified vulnerability in the Java SE, Java SE Embedded I18n component can be exploited locally possibly to obtain sensitive information, loss of integrity and cause denial of service;
  15. An unspecified vulnerability in the Java SE, Java SE Embedded AWT component can be exploited remotely possibly to cause denial of service;
  16. An unspecified vulnerability in the Java SE, Java SE Embedded, JRockit JNDI component can be exploited remotely possibly to cause denial of service;
  17. An unspecified vulnerability in the Java SE, Java SE Embedded, JRockit LDAP component can be exploited remotely possibly to obtain sensitive information;
  18. An unspecified vulnerability in the Java SE, Java SE Embedded, JRockit Libraries component can be exploited remotely possibly to cause denial of service;
  19. An unspecified vulnerability in the Java Advanced Management Console Server component can be exploited remotely possibly to obtain sensitive information;
  20. An unspecified vulnerability in the Java SE, Java SE Embedded, JRockit Libraries component can be exploited remotely possibly to obtain sensitive information.

Original advisories

Related products

CVE list

  • CVE-2018-2641
    warning
  • CVE-2018-2581
    warning
  • CVE-2018-2634
    warning
  • CVE-2018-2639
    high
  • CVE-2018-2582
    warning
  • CVE-2018-2602
    warning
  • CVE-2018-2603
    warning
  • CVE-2018-2678
    warning
  • CVE-2018-2657
    warning
  • CVE-2018-2633
    high
  • CVE-2018-2588
    warning
  • CVE-2018-2627
    warning
  • CVE-2018-2637
    high
  • CVE-2018-2618
    warning
  • CVE-2018-2675
    warning
  • CVE-2018-2677
    warning
  • CVE-2018-2629
    warning
  • CVE-2018-2599
    high
  • CVE-2018-2638
    high
  • CVE-2018-2663
    warning
  • CVE-2018-2579
    warning

Read more

Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com

Found an inaccuracy in the description of this vulnerability? Let us know!
Kaspersky Next
Let’s go Next: redefine your business’s cybersecurity
Learn more
New Kaspersky!
Your digital life deserves complete protection!
Learn more
Confirm changes?
Your message has been sent successfully.