Home

CVE-2017-3262

Description

Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Java Mission Control). The supported version that is affected is Java SE: 8u112. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE accessible data. Note: Applies to Java Mission Control Installation. CVSS v3.0 Base Score 5.3 (Confidentiality impacts).

Risk Information

Base Score
5.3
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
EPSS Score
Exploitation Probability
0.663

Associated Vulnerability

VulnerabilityOS Platform
Multiple vulnerabilities affected in Java jdk (x64) 8(x64)Windows
Multiple vulnerabilities affected in Java jdk 8Windows
Multiple vulnerabilities affected in Java jre (x64) 8(x64)Windows
Multiple vulnerabilities affected in Java jre 8Windows
Multiple vulnerabilities are affected in Java SE Development Kit 8.0.1120Windows
Multiple vulnerabilities are affected in Java SE Development Kit (x64) 8.0.1120Windows
Multiple vulnerabilities are affected in Java Runtime Environment 1.8 8.0.1120Windows
Multiple vulnerabilities are affected in Java Runtime Environment 1.8 (x64) 8.0.1120Windows

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-342255Java Runtime Environment 1.8 (x64) (8.0.4310.10) (Manual Upload Required)
PATCH-342254Java Runtime Environment 1.8 (8.0.4310.10) (Manual Upload Required)
PATCH-349783Java SE Development Kit (8.0.4610.11) (Manual Upload Required)
PATCH-349784Java SE Development Kit (x64) (8.0.4610.11) (Manual Upload Required)
PATCH-349781Java Runtime Environment 1.8 (8.0.4610.11) (Manual Upload Required)
PATCH-349782Java Runtime Environment 1.8 (x64) (8.0.4610.11) (Manual Upload Required)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234