KLA11582
Multiple vulnerabilities in Oracle Java SE
Обновлено: 17/01/2020
Дата обнаружения
15/10/2019
Уровень угрозы
High
Описание

Multiple vulnerabilities were found in Oracle Java SE. Malicious users can exploit these vulnerabilities to bypass security restrictions.

Below is a complete list of vulnerabilities:

  1. A vulnerability in Kerberos component can be exploited to bypass security restrictions;
  2. A vulnerability in Networking component can be exploited to bypass security restrictions;
  3. A vulnerability in Libraries component can be exploited to bypass security restrictions;
  4. A vulnerability in JavaFX(libxslt) component can be exploited to bypass security restrictions;
  5. A vulnerability in Hotspot component can be exploited to bypass security restrictions;
  6. A vulnerability in Scripting component can be exploited to bypass security restrictions;
  7. A vulnerability in Javadoc component can be exploited to bypass security restrictions;
  8. A vulnerability in Deployment component can be exploited to bypass security restrictions;
  9. A vulnerability in 2D component can be exploited to bypass security restrictions;
  10. A vulnerability in Concurrency component can be exploited to bypass security restrictions;
  11. A vulnerability in JAXP component can be exploited to bypass security restrictions;
  12. A vulnerability in Security component can be exploited to bypass security restrictions;
  13. A vulnerability in Serialization component can be exploited to bypass security restrictions;
Пораженные продукты

Java SE 7 version 7u231 and earlier
Java SE 8 version 8u221 and earlier
Java SE 11 version 11.0.4 and earlier
Java Embedded version 8u221 and earlier

Решение

Update to the latest version
Download Java

Первичный источник обнаружения
Oracle Java SE Risk Matrix
Оказываемое влияние
?
SB 
[?]
Связанные продукты
Oracle Java JRE 1.7.x
Oracle Java JDK 1.7.x
Oracle Java JDK 1.8.x
Oracle Java JRE 1.8.x
Oracle Java JRE 1.9.x
Oracle Java JRE 1.10.x
CVE-IDS
CVE-2019-29490.0Unknown
CVE-2019-29890.0Unknown
CVE-2019-29580.0Unknown
CVE-2019-110680.0Unknown
CVE-2019-29770.0Unknown
CVE-2019-29750.0Unknown
CVE-2019-29990.0Unknown
CVE-2019-29960.0Unknown
CVE-2019-29870.0Unknown
CVE-2019-29620.0Unknown
CVE-2019-29880.0Unknown
CVE-2019-29920.0Unknown
CVE-2019-29640.0Unknown
CVE-2019-29730.0Unknown
CVE-2019-29810.0Unknown
CVE-2019-29780.0Unknown
CVE-2019-28940.0Unknown
CVE-2019-29830.0Unknown
CVE-2019-29330.0Unknown
CVE-2019-29450.0Unknown