Multiple vulnerabilities in Oracle Java SE

Açıklama

Multiple vulnerabilities were found in Oracle Java SE. Malicious users can exploit these vulnerabilities to obtain sensitive information, cause denial of service.

Below is a complete list of vulnerabilities:

1. Vulnerability in Hotspot component of Java SE, Java SE Embedded can be exploited to obtain sensitive information;
2. Vulnerability in Libraries component of Java SE, Java SE Embedded can be exploited to cause denial of service;
3. Vulnerability in JAXP component of Java SE, Java SE Embedded can be exploited to obtain sensitive information;
4. Vulnerability in 2D component of Java SE, Java SE Embedded can be exploited to obtain sensitive information;
5. Vulnerability in Libraries component of Java SE, Java SE Embedded can be exploited to obtain sensitive information;
6. Vulnerability in JavaFX component of Java SE can be exploited to obtain sensitive information;
7. Vulnerability in JSSE component of Java SE, Java SE Embedded can be exploited to obtain sensitive information;
8. Vulnerability in ImageIO component of Java SE can be exploited to cause denial of service.

Orijinal öneriler

• Oracle Critical Patch Update Advisory – July 2020

Kötüye kullanma

Public exploits exist for this vulnerability.

İlgili ürünler

• Oracle-Java-JRE-1.7.x
• Oracle-Java-JRE-1.8.x
• Oracle-Java-JRE-1.10.x

CVE Listesi

• CVE-2020-14573
  warning
• CVE-2020-14579
  warning
• CVE-2020-14621
  high
• CVE-2020-14593
  high
• CVE-2020-14581
  warning
• CVE-2020-14583
  critical
• CVE-2020-14578
  warning
• CVE-2020-14556
  warning
• CVE-2020-14664
  critical
• CVE-2020-14577
  warning
• CVE-2020-14562
  high

Daha fazlasını okuyun

Bölgenizde yayılan güvenlik açıklarının istatistiklerini öğrenin statistics.securelist.com