KLA11470
Multiple vulnerabilities in Oracle Java SE
Updated: 05/22/2020
Detect date
?
04/16/2019
Severity
?
Critical
Description

Multiple vulnerabilities were found in Oracle Java SE. Malicious users can exploit these vulnerabilities to bypass security restrictions.

Below is a complete list of vulnerabilities:

  1. Vulnerability in Windows DLL component of Java SE can be exploited remotely to bypass security restrictions;
  2. Vulnerability in Libraries component of Java SE, Java SE Embedded can be exploited remotely to bypass security restrictions;
  3. Vulnerability in RMI component of Java SE, Java SE Embedded can be exploited remotely to bypass security restrictions;
  4. Multiple vulnerabilities in 2D component of Java SE can be exploited remotely to bypass security restrictions.
Affected products

Java SE: 7u211, 8u202, 11.0.2, 12
Java SE Embedded: 8u201
 

Solution

Update to the latest version

Original advisories

Oracle Critical Patch Update Advisory – April 2019

Impacts
?
SB 
[?]
Related products
Oracle Java JRE 1.8.x
Oracle Java JRE 1.9.x
Oracle Java JRE 1.10.x
CVE-IDS
?
CVE-2019-26988.1Critical
CVE-2019-26845.9High
CVE-2019-26999.0Critical
CVE-2019-26027.5Critical
CVE-2019-26978.1Critical