{"url":"http://public2.vulnerablecode.io/api/packages/179679?format=json","purl":"pkg:rpm/redhat/java-1.7.0-ibm@1:1.7.0.4.2-1jpp.1?arch=el6_4","type":"rpm","namespace":"redhat","name":"java-1.7.0-ibm","version":"1:1.7.0.4.2-1jpp.1","qualifiers":{"arch":"el6_4"},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/114743?format=json","vulnerability_id":"VCID-14q6-x28x-wybw","summary":"OpenJDK: temporary files created with insecure permissions (JAX-WS, 8003542)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2415.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2415.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2415","reference_id":"","reference_type":"","scores":[{"value":"0.00083","scoring_system":"epss","scoring_elements":"0.24332","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00083","scoring_system":"epss","scoring_elements":"0.24434","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00083","scoring_system":"epss","scoring_elements":"0.24415","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00083","scoring_system":"epss","scoring_elements":"0.24362","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00083","scoring_system":"epss","scoring_elements":"0.24303","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00083","scoring_system":"epss","scoring_elements":"0.24313","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2415"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=952389","reference_id":"952389","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=952389"},{"reference_url":"https://security.gentoo.org/glsa/201401-30","reference_id":"GLSA-201401-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201401-30"},{"reference_url":"https://security.gentoo.org/glsa/201406-32","reference_id":"GLSA-201406-32","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201406-32"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0751","reference_id":"RHSA-2013:0751","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0751"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0752","reference_id":"RHSA-2013:0752","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0752"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0757","reference_id":"RHSA-2013:0757","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0757"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0770","reference_id":"RHSA-2013:0770","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0770"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0822","reference_id":"RHSA-2013:0822","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0822"},{"reference_url":"https://usn.ubuntu.com/1806-1/","reference_id":"USN-1806-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1806-1/"},{"reference_url":"https://usn.ubuntu.com/1819-1/","reference_id":"USN-1819-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1819-1/"}],"fixed_packages":[],"aliases":["CVE-2013-2415"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-14q6-x28x-wybw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/114794?format=json","vulnerability_id":"VCID-3fdv-m4p1-v3c5","summary":"JDK: unspecified vulnerability fixed in 7u21 (Deployment)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2416.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2416.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2416","reference_id":"","reference_type":"","scores":[{"value":"0.37623","scoring_system":"epss","scoring_elements":"0.97281","published_at":"2026-06-04T12:55:00Z"},{"value":"0.37623","scoring_system":"epss","scoring_elements":"0.97285","published_at":"2026-06-05T12:55:00Z"},{"value":"0.37623","scoring_system":"epss","scoring_elements":"0.97287","published_at":"2026-06-06T12:55:00Z"},{"value":"0.37623","scoring_system":"epss","scoring_elements":"0.97288","published_at":"2026-06-07T12:55:00Z"},{"value":"0.37623","scoring_system":"epss","scoring_elements":"0.97289","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2416"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=953266","reference_id":"953266","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=953266"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/dos/24966.txt","reference_id":"CVE-2013-2419;CVE-2013-2416;OSVDB-92337","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/dos/24966.txt"},{"reference_url":"https://security.gentoo.org/glsa/201401-30","reference_id":"GLSA-201401-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201401-30"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0757","reference_id":"RHSA-2013:0757","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0757"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0822","reference_id":"RHSA-2013:0822","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0822"}],"fixed_packages":[],"aliases":["CVE-2013-2416"],"risk_score":0.6,"exploitability":"2.0","weighted_severity":"0.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3fdv-m4p1-v3c5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/72697?format=json","vulnerability_id":"VCID-3yjj-bp6d-tkab","summary":"Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect availability via unknown vectors related to 2D.  NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"font processing errors\" in the International Components for Unicode (ICU) Layout Engine before 51.2.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2419.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2419.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2419","reference_id":"","reference_type":"","scores":[{"value":"0.12809","scoring_system":"epss","scoring_elements":"0.94152","published_at":"2026-06-04T12:55:00Z"},{"value":"0.12809","scoring_system":"epss","scoring_elements":"0.9416","published_at":"2026-06-08T12:55:00Z"},{"value":"0.12809","scoring_system":"epss","scoring_elements":"0.94159","published_at":"2026-06-06T12:55:00Z"},{"value":"0.12809","scoring_system":"epss","scoring_elements":"0.94161","published_at":"2026-06-07T12:55:00Z"},{"value":"0.12809","scoring_system":"epss","scoring_elements":"0.94167","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2419"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1569","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1569"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2383","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2383"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2384","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2384"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2419","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2419"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6585","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6585"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6591","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6591"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7923","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7923"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7926","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7926"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7940","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7940"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9654","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9654"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=952656","reference_id":"952656","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=952656"},{"reference_url":"https://security.gentoo.org/glsa/201401-30","reference_id":"GLSA-201401-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201401-30"},{"reference_url":"https://security.gentoo.org/glsa/201406-32","reference_id":"GLSA-201406-32","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201406-32"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0751","reference_id":"RHSA-2013:0751","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0751"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0752","reference_id":"RHSA-2013:0752","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0752"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0757","reference_id":"RHSA-2013:0757","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0757"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0758","reference_id":"RHSA-2013:0758","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0758"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0770","reference_id":"RHSA-2013:0770","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0770"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0822","reference_id":"RHSA-2013:0822","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0822"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0823","reference_id":"RHSA-2013:0823","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0823"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0855","reference_id":"RHSA-2013:0855","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0855"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1455","reference_id":"RHSA-2013:1455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1455"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1456","reference_id":"RHSA-2013:1456","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1456"},{"reference_url":"https://usn.ubuntu.com/1806-1/","reference_id":"USN-1806-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1806-1/"},{"reference_url":"https://usn.ubuntu.com/1819-1/","reference_id":"USN-1819-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1819-1/"},{"reference_url":"https://usn.ubuntu.com/2522-1/","reference_id":"USN-2522-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2522-1/"},{"reference_url":"https://usn.ubuntu.com/2522-3/","reference_id":"USN-2522-3","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2522-3/"}],"fixed_packages":[],"aliases":["CVE-2013-2419"],"risk_score":0.2,"exploitability":"2.0","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3yjj-bp6d-tkab"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/114791?format=json","vulnerability_id":"VCID-45bj-jpbf-afcq","summary":"JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Deployment)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1540.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1540.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-1540","reference_id":"","reference_type":"","scores":[{"value":"0.05795","scoring_system":"epss","scoring_elements":"0.90664","published_at":"2026-06-04T12:55:00Z"},{"value":"0.05795","scoring_system":"epss","scoring_elements":"0.90677","published_at":"2026-06-05T12:55:00Z"},{"value":"0.05795","scoring_system":"epss","scoring_elements":"0.90676","published_at":"2026-06-06T12:55:00Z"},{"value":"0.05795","scoring_system":"epss","scoring_elements":"0.90674","published_at":"2026-06-07T12:55:00Z"},{"value":"0.05795","scoring_system":"epss","scoring_elements":"0.90673","published_at":"2026-06-08T12:55:00Z"},{"value":"0.05795","scoring_system":"epss","scoring_elements":"0.90691","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-1540"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=953166","reference_id":"953166","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=953166"},{"reference_url":"https://security.gentoo.org/glsa/201401-30","reference_id":"GLSA-201401-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201401-30"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0757","reference_id":"RHSA-2013:0757","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0757"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0758","reference_id":"RHSA-2013:0758","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0758"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0822","reference_id":"RHSA-2013:0822","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0822"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0823","reference_id":"RHSA-2013:0823","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0823"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1455","reference_id":"RHSA-2013:1455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1455"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1456","reference_id":"RHSA-2013:1456","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1456"}],"fixed_packages":[],"aliases":["CVE-2013-1540"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-45bj-jpbf-afcq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/114800?format=json","vulnerability_id":"VCID-54dr-jmt9-2kc7","summary":"JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Deployment)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2435.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2435.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2435","reference_id":"","reference_type":"","scores":[{"value":"0.0652","scoring_system":"epss","scoring_elements":"0.91282","published_at":"2026-06-04T12:55:00Z"},{"value":"0.0652","scoring_system":"epss","scoring_elements":"0.91295","published_at":"2026-06-05T12:55:00Z"},{"value":"0.0652","scoring_system":"epss","scoring_elements":"0.91296","published_at":"2026-06-06T12:55:00Z"},{"value":"0.0652","scoring_system":"epss","scoring_elements":"0.91292","published_at":"2026-06-07T12:55:00Z"},{"value":"0.0652","scoring_system":"epss","scoring_elements":"0.91288","published_at":"2026-06-08T12:55:00Z"},{"value":"0.0652","scoring_system":"epss","scoring_elements":"0.91303","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2435"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=953273","reference_id":"953273","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=953273"},{"reference_url":"https://security.gentoo.org/glsa/201401-30","reference_id":"GLSA-201401-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201401-30"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0757","reference_id":"RHSA-2013:0757","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0757"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0758","reference_id":"RHSA-2013:0758","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0758"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0822","reference_id":"RHSA-2013:0822","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0822"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0823","reference_id":"RHSA-2013:0823","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0823"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1455","reference_id":"RHSA-2013:1455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1455"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1456","reference_id":"RHSA-2013:1456","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1456"}],"fixed_packages":[],"aliases":["CVE-2013-2435"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-54dr-jmt9-2kc7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/114747?format=json","vulnerability_id":"VCID-5aur-zr3y-vycm","summary":"OpenJDK: JPEGImageReader state corruption (ImageIO, 8007667)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2430.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2430.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2430","reference_id":"","reference_type":"","scores":[{"value":"0.07303","scoring_system":"epss","scoring_elements":"0.91813","published_at":"2026-06-04T12:55:00Z"},{"value":"0.07303","scoring_system":"epss","scoring_elements":"0.91825","published_at":"2026-06-08T12:55:00Z"},{"value":"0.07303","scoring_system":"epss","scoring_elements":"0.91827","published_at":"2026-06-06T12:55:00Z"},{"value":"0.07303","scoring_system":"epss","scoring_elements":"0.91826","published_at":"2026-06-07T12:55:00Z"},{"value":"0.07303","scoring_system":"epss","scoring_elements":"0.9184","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2430"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=952524","reference_id":"952524","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=952524"},{"reference_url":"https://security.gentoo.org/glsa/201401-30","reference_id":"GLSA-201401-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201401-30"},{"reference_url":"https://security.gentoo.org/glsa/201406-32","reference_id":"GLSA-201406-32","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201406-32"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0751","reference_id":"RHSA-2013:0751","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0751"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0752","reference_id":"RHSA-2013:0752","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0752"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0757","reference_id":"RHSA-2013:0757","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0757"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0758","reference_id":"RHSA-2013:0758","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0758"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0770","reference_id":"RHSA-2013:0770","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0770"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0822","reference_id":"RHSA-2013:0822","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0822"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0823","reference_id":"RHSA-2013:0823","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0823"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0855","reference_id":"RHSA-2013:0855","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0855"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1455","reference_id":"RHSA-2013:1455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1455"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1456","reference_id":"RHSA-2013:1456","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1456"},{"reference_url":"https://usn.ubuntu.com/1806-1/","reference_id":"USN-1806-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1806-1/"},{"reference_url":"https://usn.ubuntu.com/1819-1/","reference_id":"USN-1819-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1819-1/"}],"fixed_packages":[],"aliases":["CVE-2013-2430"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-5aur-zr3y-vycm"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/114795?format=json","vulnerability_id":"VCID-9vm1-r16j-vbd9","summary":"JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Deployment)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2418.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2418.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2418","reference_id":"","reference_type":"","scores":[{"value":"0.00137","scoring_system":"epss","scoring_elements":"0.3326","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00137","scoring_system":"epss","scoring_elements":"0.33361","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00137","scoring_system":"epss","scoring_elements":"0.33377","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00137","scoring_system":"epss","scoring_elements":"0.33341","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00137","scoring_system":"epss","scoring_elements":"0.33306","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00137","scoring_system":"epss","scoring_elements":"0.33328","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2418"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=953267","reference_id":"953267","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=953267"},{"reference_url":"https://security.gentoo.org/glsa/201401-30","reference_id":"GLSA-201401-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201401-30"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0757","reference_id":"RHSA-2013:0757","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0757"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0758","reference_id":"RHSA-2013:0758","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0758"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0822","reference_id":"RHSA-2013:0822","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0822"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0823","reference_id":"RHSA-2013:0823","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0823"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1455","reference_id":"RHSA-2013:1455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1455"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1456","reference_id":"RHSA-2013:1456","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1456"}],"fixed_packages":[],"aliases":["CVE-2013-2418"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9vm1-r16j-vbd9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/114829?format=json","vulnerability_id":"VCID-aawj-6nkg-jfc2","summary":"JDK: unspecified sanbox bypass (CanSecWest 2013, 2D)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1491.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1491.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-1491","reference_id":"","reference_type":"","scores":[{"value":"0.19623","scoring_system":"epss","scoring_elements":"0.95534","published_at":"2026-06-04T12:55:00Z"},{"value":"0.19623","scoring_system":"epss","scoring_elements":"0.95541","published_at":"2026-06-05T12:55:00Z"},{"value":"0.19623","scoring_system":"epss","scoring_elements":"0.95545","published_at":"2026-06-06T12:55:00Z"},{"value":"0.19623","scoring_system":"epss","scoring_elements":"0.95547","published_at":"2026-06-08T12:55:00Z"},{"value":"0.19623","scoring_system":"epss","scoring_elements":"0.95551","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-1491"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=920248","reference_id":"920248","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=920248"},{"reference_url":"https://security.gentoo.org/glsa/201401-30","reference_id":"GLSA-201401-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201401-30"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0757","reference_id":"RHSA-2013:0757","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0757"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0758","reference_id":"RHSA-2013:0758","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0758"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0822","reference_id":"RHSA-2013:0822","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0822"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0823","reference_id":"RHSA-2013:0823","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0823"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0855","reference_id":"RHSA-2013:0855","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0855"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1455","reference_id":"RHSA-2013:1455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1455"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1456","reference_id":"RHSA-2013:1456","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1456"}],"fixed_packages":[],"aliases":["CVE-2013-1491"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-aawj-6nkg-jfc2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/114797?format=json","vulnerability_id":"VCID-bh61-aptt-n3hf","summary":"JDK: unspecified vulnerability fixed in 7u21 and 6u45 (2D)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2432.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2432.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2432","reference_id":"","reference_type":"","scores":[{"value":"0.05963","scoring_system":"epss","scoring_elements":"0.90819","published_at":"2026-06-04T12:55:00Z"},{"value":"0.05963","scoring_system":"epss","scoring_elements":"0.90834","published_at":"2026-06-06T12:55:00Z"},{"value":"0.05963","scoring_system":"epss","scoring_elements":"0.90831","published_at":"2026-06-07T12:55:00Z"},{"value":"0.05963","scoring_system":"epss","scoring_elements":"0.90829","published_at":"2026-06-08T12:55:00Z"},{"value":"0.05963","scoring_system":"epss","scoring_elements":"0.90845","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2432"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=953269","reference_id":"953269","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=953269"},{"reference_url":"https://security.gentoo.org/glsa/201401-30","reference_id":"GLSA-201401-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201401-30"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0757","reference_id":"RHSA-2013:0757","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0757"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0758","reference_id":"RHSA-2013:0758","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0758"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0822","reference_id":"RHSA-2013:0822","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0822"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0823","reference_id":"RHSA-2013:0823","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0823"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0855","reference_id":"RHSA-2013:0855","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0855"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1455","reference_id":"RHSA-2013:1455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1455"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1456","reference_id":"RHSA-2013:1456","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1456"}],"fixed_packages":[],"aliases":["CVE-2013-2432"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-bh61-aptt-n3hf"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/114742?format=json","vulnerability_id":"VCID-braw-1z39-pfaz","summary":"OpenJDK: remote code loading enabled by default (RMI, 8001040)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1537.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1537.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-1537","reference_id":"","reference_type":"","scores":[{"value":"0.10177","scoring_system":"epss","scoring_elements":"0.93257","published_at":"2026-06-04T12:55:00Z"},{"value":"0.10177","scoring_system":"epss","scoring_elements":"0.93268","published_at":"2026-06-06T12:55:00Z"},{"value":"0.10177","scoring_system":"epss","scoring_elements":"0.93266","published_at":"2026-06-07T12:55:00Z"},{"value":"0.10177","scoring_system":"epss","scoring_elements":"0.93265","published_at":"2026-06-08T12:55:00Z"},{"value":"0.10177","scoring_system":"epss","scoring_elements":"0.93273","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-1537"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=952387","reference_id":"952387","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=952387"},{"reference_url":"https://security.gentoo.org/glsa/201401-30","reference_id":"GLSA-201401-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201401-30"},{"reference_url":"https://security.gentoo.org/glsa/201406-32","reference_id":"GLSA-201406-32","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201406-32"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0751","reference_id":"RHSA-2013:0751","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0751"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0752","reference_id":"RHSA-2013:0752","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0752"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0757","reference_id":"RHSA-2013:0757","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0757"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0758","reference_id":"RHSA-2013:0758","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0758"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0770","reference_id":"RHSA-2013:0770","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0770"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0822","reference_id":"RHSA-2013:0822","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0822"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0823","reference_id":"RHSA-2013:0823","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0823"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0855","reference_id":"RHSA-2013:0855","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0855"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1455","reference_id":"RHSA-2013:1455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1455"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1456","reference_id":"RHSA-2013:1456","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1456"},{"reference_url":"https://usn.ubuntu.com/1806-1/","reference_id":"USN-1806-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1806-1/"},{"reference_url":"https://usn.ubuntu.com/1819-1/","reference_id":"USN-1819-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1819-1/"}],"fixed_packages":[],"aliases":["CVE-2013-1537"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-braw-1z39-pfaz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/114749?format=json","vulnerability_id":"VCID-c4n5-jfy5-rkf1","summary":"OpenJDK: image processing vulnerability (2D, 8007617)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2420.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2420.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2420","reference_id":"","reference_type":"","scores":[{"value":"0.06272","scoring_system":"epss","scoring_elements":"0.9108","published_at":"2026-06-04T12:55:00Z"},{"value":"0.06272","scoring_system":"epss","scoring_elements":"0.91093","published_at":"2026-06-05T12:55:00Z"},{"value":"0.06272","scoring_system":"epss","scoring_elements":"0.91092","published_at":"2026-06-06T12:55:00Z"},{"value":"0.06272","scoring_system":"epss","scoring_elements":"0.9109","published_at":"2026-06-07T12:55:00Z"},{"value":"0.06272","scoring_system":"epss","scoring_elements":"0.91087","published_at":"2026-06-08T12:55:00Z"},{"value":"0.06272","scoring_system":"epss","scoring_elements":"0.91103","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2420"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=952638","reference_id":"952638","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=952638"},{"reference_url":"https://security.gentoo.org/glsa/201401-30","reference_id":"GLSA-201401-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201401-30"},{"reference_url":"https://security.gentoo.org/glsa/201406-32","reference_id":"GLSA-201406-32","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201406-32"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0751","reference_id":"RHSA-2013:0751","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0751"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0752","reference_id":"RHSA-2013:0752","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0752"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0757","reference_id":"RHSA-2013:0757","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0757"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0758","reference_id":"RHSA-2013:0758","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0758"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0770","reference_id":"RHSA-2013:0770","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0770"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0822","reference_id":"RHSA-2013:0822","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0822"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0823","reference_id":"RHSA-2013:0823","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0823"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0855","reference_id":"RHSA-2013:0855","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0855"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1455","reference_id":"RHSA-2013:1455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1455"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1456","reference_id":"RHSA-2013:1456","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1456"},{"reference_url":"https://usn.ubuntu.com/1806-1/","reference_id":"USN-1806-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1806-1/"},{"reference_url":"https://usn.ubuntu.com/1819-1/","reference_id":"USN-1819-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1819-1/"}],"fixed_packages":[],"aliases":["CVE-2013-2420"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-c4n5-jfy5-rkf1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/114746?format=json","vulnerability_id":"VCID-cpfe-818v-6qfc","summary":"OpenJDK: JPEGImageWriter state corruption (ImageIO, 8007918)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2429.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2429.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2429","reference_id":"","reference_type":"","scores":[{"value":"0.10714","scoring_system":"epss","scoring_elements":"0.9346","published_at":"2026-06-04T12:55:00Z"},{"value":"0.10714","scoring_system":"epss","scoring_elements":"0.93471","published_at":"2026-06-06T12:55:00Z"},{"value":"0.10714","scoring_system":"epss","scoring_elements":"0.93469","published_at":"2026-06-07T12:55:00Z"},{"value":"0.10714","scoring_system":"epss","scoring_elements":"0.93468","published_at":"2026-06-08T12:55:00Z"},{"value":"0.10714","scoring_system":"epss","scoring_elements":"0.93476","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2429"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=952521","reference_id":"952521","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=952521"},{"reference_url":"https://security.gentoo.org/glsa/201401-30","reference_id":"GLSA-201401-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201401-30"},{"reference_url":"https://security.gentoo.org/glsa/201406-32","reference_id":"GLSA-201406-32","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201406-32"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0751","reference_id":"RHSA-2013:0751","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0751"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0752","reference_id":"RHSA-2013:0752","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0752"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0757","reference_id":"RHSA-2013:0757","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0757"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0758","reference_id":"RHSA-2013:0758","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0758"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0770","reference_id":"RHSA-2013:0770","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0770"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0822","reference_id":"RHSA-2013:0822","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0822"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0823","reference_id":"RHSA-2013:0823","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0823"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0855","reference_id":"RHSA-2013:0855","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0855"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1455","reference_id":"RHSA-2013:1455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1455"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1456","reference_id":"RHSA-2013:1456","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1456"},{"reference_url":"https://usn.ubuntu.com/1806-1/","reference_id":"USN-1806-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1806-1/"},{"reference_url":"https://usn.ubuntu.com/1819-1/","reference_id":"USN-1819-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1819-1/"}],"fixed_packages":[],"aliases":["CVE-2013-2429"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-cpfe-818v-6qfc"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/114741?format=json","vulnerability_id":"VCID-cspe-bq8v-tfdb","summary":"OpenJDK: JDBC driver manager improper toString calls (CanSecWest 2013, Libraries, 8009814)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1488.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1488.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-1488","reference_id":"","reference_type":"","scores":[{"value":"0.86252","scoring_system":"epss","scoring_elements":"0.99418","published_at":"2026-06-04T12:55:00Z"},{"value":"0.86252","scoring_system":"epss","scoring_elements":"0.99419","published_at":"2026-06-08T12:55:00Z"},{"value":"0.86252","scoring_system":"epss","scoring_elements":"0.9942","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-1488"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=920247","reference_id":"920247","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=920247"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/26135.rb","reference_id":"CVE-2013-1488;OSVDB-91472","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/26135.rb"},{"reference_url":"http://www.zerodayinitiative.com/advisories/ZDI-13-076/","reference_id":"CVE-2013-1488;OSVDB-91472","reference_type":"exploit","scores":[],"url":"http://www.zerodayinitiative.com/advisories/ZDI-13-076/"},{"reference_url":"https://security.gentoo.org/glsa/201401-30","reference_id":"GLSA-201401-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201401-30"},{"reference_url":"https://security.gentoo.org/glsa/201406-32","reference_id":"GLSA-201406-32","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201406-32"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0751","reference_id":"RHSA-2013:0751","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0751"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0752","reference_id":"RHSA-2013:0752","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0752"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0757","reference_id":"RHSA-2013:0757","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0757"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0770","reference_id":"RHSA-2013:0770","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0770"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0822","reference_id":"RHSA-2013:0822","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0822"},{"reference_url":"https://usn.ubuntu.com/1806-1/","reference_id":"USN-1806-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1806-1/"},{"reference_url":"https://usn.ubuntu.com/1819-1/","reference_id":"USN-1819-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1819-1/"}],"fixed_packages":[],"aliases":["CVE-2013-1488"],"risk_score":1.6,"exploitability":"2.0","weighted_severity":"0.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-cspe-bq8v-tfdb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/114802?format=json","vulnerability_id":"VCID-hgew-1w9c-aqec","summary":"JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Deployment)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2440.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2440.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2440","reference_id":"","reference_type":"","scores":[{"value":"0.0652","scoring_system":"epss","scoring_elements":"0.91282","published_at":"2026-06-04T12:55:00Z"},{"value":"0.0652","scoring_system":"epss","scoring_elements":"0.91295","published_at":"2026-06-05T12:55:00Z"},{"value":"0.0652","scoring_system":"epss","scoring_elements":"0.91296","published_at":"2026-06-06T12:55:00Z"},{"value":"0.0652","scoring_system":"epss","scoring_elements":"0.91292","published_at":"2026-06-07T12:55:00Z"},{"value":"0.0652","scoring_system":"epss","scoring_elements":"0.91288","published_at":"2026-06-08T12:55:00Z"},{"value":"0.0652","scoring_system":"epss","scoring_elements":"0.91303","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2440"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=953275","reference_id":"953275","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=953275"},{"reference_url":"https://security.gentoo.org/glsa/201401-30","reference_id":"GLSA-201401-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201401-30"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0757","reference_id":"RHSA-2013:0757","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0757"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0758","reference_id":"RHSA-2013:0758","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0758"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0822","reference_id":"RHSA-2013:0822","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0822"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0823","reference_id":"RHSA-2013:0823","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0823"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1455","reference_id":"RHSA-2013:1455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1455"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1456","reference_id":"RHSA-2013:1456","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1456"}],"fixed_packages":[],"aliases":["CVE-2013-2440"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-hgew-1w9c-aqec"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/114740?format=json","vulnerability_id":"VCID-hz8w-qren-dqcz","summary":"OpenJDK: sun.awt.datatransfer.ClassLoaderObjectInputStream class may incorrectly invoke the system class loader (CanSecWest 2013, AWT, 8009305)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-0401.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-0401.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-0401","reference_id":"","reference_type":"","scores":[{"value":"0.10134","scoring_system":"epss","scoring_elements":"0.93237","published_at":"2026-06-04T12:55:00Z"},{"value":"0.10134","scoring_system":"epss","scoring_elements":"0.93248","published_at":"2026-06-06T12:55:00Z"},{"value":"0.10134","scoring_system":"epss","scoring_elements":"0.93247","published_at":"2026-06-07T12:55:00Z"},{"value":"0.10134","scoring_system":"epss","scoring_elements":"0.93245","published_at":"2026-06-08T12:55:00Z"},{"value":"0.10134","scoring_system":"epss","scoring_elements":"0.93252","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-0401"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=920245","reference_id":"920245","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=920245"},{"reference_url":"https://security.gentoo.org/glsa/201401-30","reference_id":"GLSA-201401-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201401-30"},{"reference_url":"https://security.gentoo.org/glsa/201406-32","reference_id":"GLSA-201406-32","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201406-32"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0751","reference_id":"RHSA-2013:0751","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0751"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0752","reference_id":"RHSA-2013:0752","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0752"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0757","reference_id":"RHSA-2013:0757","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0757"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0758","reference_id":"RHSA-2013:0758","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0758"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0770","reference_id":"RHSA-2013:0770","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0770"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0822","reference_id":"RHSA-2013:0822","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0822"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0823","reference_id":"RHSA-2013:0823","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0823"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0855","reference_id":"RHSA-2013:0855","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0855"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1455","reference_id":"RHSA-2013:1455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1455"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1456","reference_id":"RHSA-2013:1456","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1456"},{"reference_url":"https://usn.ubuntu.com/1806-1/","reference_id":"USN-1806-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1806-1/"},{"reference_url":"https://usn.ubuntu.com/1819-1/","reference_id":"USN-1819-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1819-1/"}],"fixed_packages":[],"aliases":["CVE-2013-0401"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-hz8w-qren-dqcz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/114745?format=json","vulnerability_id":"VCID-j8uj-v93c-g7hy","summary":"OpenJDK: MBeanInstantiator insufficient class access checks (JMX, 8006435)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2424.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2424.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2424","reference_id":"","reference_type":"","scores":[{"value":"0.03853","scoring_system":"epss","scoring_elements":"0.88415","published_at":"2026-06-04T12:55:00Z"},{"value":"0.03853","scoring_system":"epss","scoring_elements":"0.88433","published_at":"2026-06-08T12:55:00Z"},{"value":"0.03853","scoring_system":"epss","scoring_elements":"0.88435","published_at":"2026-06-06T12:55:00Z"},{"value":"0.03853","scoring_system":"epss","scoring_elements":"0.88449","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2424"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=952509","reference_id":"952509","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=952509"},{"reference_url":"https://security.gentoo.org/glsa/201401-30","reference_id":"GLSA-201401-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201401-30"},{"reference_url":"https://security.gentoo.org/glsa/201406-32","reference_id":"GLSA-201406-32","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201406-32"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0751","reference_id":"RHSA-2013:0751","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0751"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0752","reference_id":"RHSA-2013:0752","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0752"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0757","reference_id":"RHSA-2013:0757","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0757"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0758","reference_id":"RHSA-2013:0758","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0758"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0770","reference_id":"RHSA-2013:0770","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0770"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0822","reference_id":"RHSA-2013:0822","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0822"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0823","reference_id":"RHSA-2013:0823","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0823"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0855","reference_id":"RHSA-2013:0855","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0855"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1455","reference_id":"RHSA-2013:1455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1455"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1456","reference_id":"RHSA-2013:1456","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1456"},{"reference_url":"https://usn.ubuntu.com/1806-1/","reference_id":"USN-1806-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1806-1/"},{"reference_url":"https://usn.ubuntu.com/1819-1/","reference_id":"USN-1819-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1819-1/"}],"fixed_packages":[],"aliases":["CVE-2013-2424"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-j8uj-v93c-g7hy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/72695?format=json","vulnerability_id":"VCID-kauc-686u-jqeh","summary":"Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2013-1569, CVE-2013-2384, and CVE-2013-2420. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"handling of [a] glyph table\" in the International Components for Unicode (ICU) Layout Engine before 51.2.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2383.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2383.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2383","reference_id":"","reference_type":"","scores":[{"value":"0.0562","scoring_system":"epss","scoring_elements":"0.90497","published_at":"2026-06-04T12:55:00Z"},{"value":"0.0562","scoring_system":"epss","scoring_elements":"0.90511","published_at":"2026-06-05T12:55:00Z"},{"value":"0.0562","scoring_system":"epss","scoring_elements":"0.90512","published_at":"2026-06-06T12:55:00Z"},{"value":"0.0562","scoring_system":"epss","scoring_elements":"0.90509","published_at":"2026-06-07T12:55:00Z"},{"value":"0.0562","scoring_system":"epss","scoring_elements":"0.90508","published_at":"2026-06-08T12:55:00Z"},{"value":"0.0562","scoring_system":"epss","scoring_elements":"0.90524","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2383"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1569","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1569"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2383","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2383"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2384","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2384"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2419","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2419"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6585","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6585"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6591","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6591"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7923","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7923"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7926","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7926"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7940","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7940"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9654","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9654"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=952708","reference_id":"952708","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=952708"},{"reference_url":"https://security.gentoo.org/glsa/201401-30","reference_id":"GLSA-201401-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201401-30"},{"reference_url":"https://security.gentoo.org/glsa/201406-32","reference_id":"GLSA-201406-32","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201406-32"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0751","reference_id":"RHSA-2013:0751","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0751"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0752","reference_id":"RHSA-2013:0752","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0752"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0757","reference_id":"RHSA-2013:0757","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0757"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0758","reference_id":"RHSA-2013:0758","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0758"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0770","reference_id":"RHSA-2013:0770","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0770"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0822","reference_id":"RHSA-2013:0822","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0822"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0823","reference_id":"RHSA-2013:0823","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0823"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0855","reference_id":"RHSA-2013:0855","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0855"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1455","reference_id":"RHSA-2013:1455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1455"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1456","reference_id":"RHSA-2013:1456","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1456"},{"reference_url":"https://usn.ubuntu.com/1806-1/","reference_id":"USN-1806-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1806-1/"},{"reference_url":"https://usn.ubuntu.com/1819-1/","reference_id":"USN-1819-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1819-1/"},{"reference_url":"https://usn.ubuntu.com/2522-1/","reference_id":"USN-2522-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2522-1/"},{"reference_url":"https://usn.ubuntu.com/2522-3/","reference_id":"USN-2522-3","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2522-3/"}],"fixed_packages":[],"aliases":["CVE-2013-2383"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-kauc-686u-jqeh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/114799?format=json","vulnerability_id":"VCID-mbdk-b3pz-fygg","summary":"JDK: unspecified vulnerability fixed in 7u21 (2D)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2434.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2434.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2434","reference_id":"","reference_type":"","scores":[{"value":"0.01487","scoring_system":"epss","scoring_elements":"0.81368","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01487","scoring_system":"epss","scoring_elements":"0.81396","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01487","scoring_system":"epss","scoring_elements":"0.81399","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01487","scoring_system":"epss","scoring_elements":"0.81391","published_at":"2026-06-08T12:55:00Z"},{"value":"0.01487","scoring_system":"epss","scoring_elements":"0.81408","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2434"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=953272","reference_id":"953272","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=953272"},{"reference_url":"https://security.gentoo.org/glsa/201401-30","reference_id":"GLSA-201401-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201401-30"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0757","reference_id":"RHSA-2013:0757","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0757"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0822","reference_id":"RHSA-2013:0822","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0822"}],"fixed_packages":[],"aliases":["CVE-2013-2434"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-mbdk-b3pz-fygg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/114756?format=json","vulnerability_id":"VCID-prs3-wb85-13h3","summary":"OpenJDK: ConcurrentHashMap incorrectly calls defaultReadObject() method (Libraries, 8009063)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2426.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2426.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2426","reference_id":"","reference_type":"","scores":[{"value":"0.25354","scoring_system":"epss","scoring_elements":"0.96311","published_at":"2026-06-04T12:55:00Z"},{"value":"0.25354","scoring_system":"epss","scoring_elements":"0.96315","published_at":"2026-06-05T12:55:00Z"},{"value":"0.25354","scoring_system":"epss","scoring_elements":"0.96319","published_at":"2026-06-06T12:55:00Z"},{"value":"0.25354","scoring_system":"epss","scoring_elements":"0.9632","published_at":"2026-06-08T12:55:00Z"},{"value":"0.25354","scoring_system":"epss","scoring_elements":"0.96325","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2426"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=952653","reference_id":"952653","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=952653"},{"reference_url":"https://security.gentoo.org/glsa/201401-30","reference_id":"GLSA-201401-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201401-30"},{"reference_url":"https://security.gentoo.org/glsa/201406-32","reference_id":"GLSA-201406-32","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201406-32"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0751","reference_id":"RHSA-2013:0751","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0751"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0752","reference_id":"RHSA-2013:0752","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0752"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0757","reference_id":"RHSA-2013:0757","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0757"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0770","reference_id":"RHSA-2013:0770","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0770"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0822","reference_id":"RHSA-2013:0822","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0822"},{"reference_url":"https://usn.ubuntu.com/1806-1/","reference_id":"USN-1806-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1806-1/"},{"reference_url":"https://usn.ubuntu.com/1819-1/","reference_id":"USN-1819-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1819-1/"}],"fixed_packages":[],"aliases":["CVE-2013-2426"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-prs3-wb85-13h3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/114792?format=json","vulnerability_id":"VCID-puj6-f49b-7yg9","summary":"JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Install)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1563.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1563.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-1563","reference_id":"","reference_type":"","scores":[{"value":"0.03922","scoring_system":"epss","scoring_elements":"0.88518","published_at":"2026-06-04T12:55:00Z"},{"value":"0.03922","scoring_system":"epss","scoring_elements":"0.88536","published_at":"2026-06-05T12:55:00Z"},{"value":"0.03922","scoring_system":"epss","scoring_elements":"0.88538","published_at":"2026-06-06T12:55:00Z"},{"value":"0.03922","scoring_system":"epss","scoring_elements":"0.88537","published_at":"2026-06-08T12:55:00Z"},{"value":"0.03922","scoring_system":"epss","scoring_elements":"0.88554","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-1563"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=953172","reference_id":"953172","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=953172"},{"reference_url":"https://security.gentoo.org/glsa/201401-30","reference_id":"GLSA-201401-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201401-30"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0757","reference_id":"RHSA-2013:0757","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0757"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0758","reference_id":"RHSA-2013:0758","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0758"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0822","reference_id":"RHSA-2013:0822","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0822"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0823","reference_id":"RHSA-2013:0823","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0823"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1455","reference_id":"RHSA-2013:1455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1455"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1456","reference_id":"RHSA-2013:1456","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1456"}],"fixed_packages":[],"aliases":["CVE-2013-1563"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-puj6-f49b-7yg9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/72696?format=json","vulnerability_id":"VCID-rz8q-v7bh-9fe1","summary":"Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2013-1569, CVE-2013-2383, and CVE-2013-2420. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"font layout\" in the International Components for Unicode (ICU) Layout Engine before 51.2.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2384.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2384.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2384","reference_id":"","reference_type":"","scores":[{"value":"0.0562","scoring_system":"epss","scoring_elements":"0.90497","published_at":"2026-06-04T12:55:00Z"},{"value":"0.0562","scoring_system":"epss","scoring_elements":"0.90511","published_at":"2026-06-05T12:55:00Z"},{"value":"0.0562","scoring_system":"epss","scoring_elements":"0.90512","published_at":"2026-06-06T12:55:00Z"},{"value":"0.0562","scoring_system":"epss","scoring_elements":"0.90509","published_at":"2026-06-07T12:55:00Z"},{"value":"0.0562","scoring_system":"epss","scoring_elements":"0.90508","published_at":"2026-06-08T12:55:00Z"},{"value":"0.0562","scoring_system":"epss","scoring_elements":"0.90524","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2384"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1569","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1569"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2383","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2383"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2384","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2384"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2419","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2419"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6585","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6585"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6591","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6591"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7923","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7923"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7926","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7926"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7940","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7940"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9654","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9654"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=952709","reference_id":"952709","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=952709"},{"reference_url":"https://security.gentoo.org/glsa/201401-30","reference_id":"GLSA-201401-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201401-30"},{"reference_url":"https://security.gentoo.org/glsa/201406-32","reference_id":"GLSA-201406-32","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201406-32"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0751","reference_id":"RHSA-2013:0751","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0751"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0752","reference_id":"RHSA-2013:0752","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0752"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0757","reference_id":"RHSA-2013:0757","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0757"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0758","reference_id":"RHSA-2013:0758","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0758"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0770","reference_id":"RHSA-2013:0770","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0770"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0822","reference_id":"RHSA-2013:0822","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0822"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0823","reference_id":"RHSA-2013:0823","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0823"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0855","reference_id":"RHSA-2013:0855","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0855"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1455","reference_id":"RHSA-2013:1455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1455"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1456","reference_id":"RHSA-2013:1456","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1456"},{"reference_url":"https://usn.ubuntu.com/1806-1/","reference_id":"USN-1806-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1806-1/"},{"reference_url":"https://usn.ubuntu.com/1819-1/","reference_id":"USN-1819-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1819-1/"},{"reference_url":"https://usn.ubuntu.com/2522-1/","reference_id":"USN-2522-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2522-1/"},{"reference_url":"https://usn.ubuntu.com/2522-3/","reference_id":"USN-2522-3","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2522-3/"}],"fixed_packages":[],"aliases":["CVE-2013-2384"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rz8q-v7bh-9fe1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/72694?format=json","vulnerability_id":"VCID-scv7-4fwv-vyek","summary":"Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.  NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"checking of [a] glyph table\" in the International Components for Unicode (ICU) Layout Engine before 51.2.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1569.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1569.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-1569","reference_id":"","reference_type":"","scores":[{"value":"0.0147","scoring_system":"epss","scoring_elements":"0.81262","published_at":"2026-06-04T12:55:00Z"},{"value":"0.0147","scoring_system":"epss","scoring_elements":"0.81291","published_at":"2026-06-05T12:55:00Z"},{"value":"0.0147","scoring_system":"epss","scoring_elements":"0.81293","published_at":"2026-06-06T12:55:00Z"},{"value":"0.0147","scoring_system":"epss","scoring_elements":"0.8129","published_at":"2026-06-07T12:55:00Z"},{"value":"0.0147","scoring_system":"epss","scoring_elements":"0.81286","published_at":"2026-06-08T12:55:00Z"},{"value":"0.0147","scoring_system":"epss","scoring_elements":"0.81302","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-1569"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1569","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1569"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2383","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2383"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2384","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2384"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2419","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2419"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6585","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6585"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6591","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6591"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7923","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7923"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7926","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7926"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7940","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7940"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9654","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9654"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=952711","reference_id":"952711","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=952711"},{"reference_url":"https://security.gentoo.org/glsa/201401-30","reference_id":"GLSA-201401-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201401-30"},{"reference_url":"https://security.gentoo.org/glsa/201406-32","reference_id":"GLSA-201406-32","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201406-32"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0751","reference_id":"RHSA-2013:0751","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0751"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0752","reference_id":"RHSA-2013:0752","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0752"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0757","reference_id":"RHSA-2013:0757","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0757"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0758","reference_id":"RHSA-2013:0758","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0758"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0770","reference_id":"RHSA-2013:0770","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0770"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0822","reference_id":"RHSA-2013:0822","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0822"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0823","reference_id":"RHSA-2013:0823","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0823"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0855","reference_id":"RHSA-2013:0855","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0855"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1455","reference_id":"RHSA-2013:1455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1455"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1456","reference_id":"RHSA-2013:1456","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1456"},{"reference_url":"https://usn.ubuntu.com/1806-1/","reference_id":"USN-1806-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1806-1/"},{"reference_url":"https://usn.ubuntu.com/1819-1/","reference_id":"USN-1819-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1819-1/"},{"reference_url":"https://usn.ubuntu.com/2522-1/","reference_id":"USN-2522-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2522-1/"},{"reference_url":"https://usn.ubuntu.com/2522-3/","reference_id":"USN-2522-3","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2522-3/"}],"fixed_packages":[],"aliases":["CVE-2013-1569"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-scv7-4fwv-vyek"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/114798?format=json","vulnerability_id":"VCID-tbdk-65x1-ekg4","summary":"JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Deployment)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2433.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2433.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2433","reference_id":"","reference_type":"","scores":[{"value":"0.02656","scoring_system":"epss","scoring_elements":"0.8606","published_at":"2026-06-04T12:55:00Z"},{"value":"0.02656","scoring_system":"epss","scoring_elements":"0.86081","published_at":"2026-06-05T12:55:00Z"},{"value":"0.02656","scoring_system":"epss","scoring_elements":"0.86085","published_at":"2026-06-06T12:55:00Z"},{"value":"0.02656","scoring_system":"epss","scoring_elements":"0.8608","published_at":"2026-06-07T12:55:00Z"},{"value":"0.02656","scoring_system":"epss","scoring_elements":"0.86069","published_at":"2026-06-08T12:55:00Z"},{"value":"0.02656","scoring_system":"epss","scoring_elements":"0.86082","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2433"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=953270","reference_id":"953270","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=953270"},{"reference_url":"https://security.gentoo.org/glsa/201401-30","reference_id":"GLSA-201401-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201401-30"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0757","reference_id":"RHSA-2013:0757","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0757"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0758","reference_id":"RHSA-2013:0758","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0758"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0822","reference_id":"RHSA-2013:0822","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0822"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0823","reference_id":"RHSA-2013:0823","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0823"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1455","reference_id":"RHSA-2013:1455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1455"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1456","reference_id":"RHSA-2013:1456","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1456"}],"fixed_packages":[],"aliases":["CVE-2013-2433"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-tbdk-65x1-ekg4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/114757?format=json","vulnerability_id":"VCID-u4nj-dy1g-uuat","summary":"OpenJDK: Network InetAddress serialization information disclosure (Networking, 8000724)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2417.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2417.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2417","reference_id":"","reference_type":"","scores":[{"value":"0.04906","scoring_system":"epss","scoring_elements":"0.8978","published_at":"2026-06-04T12:55:00Z"},{"value":"0.04906","scoring_system":"epss","scoring_elements":"0.89796","published_at":"2026-06-05T12:55:00Z"},{"value":"0.04906","scoring_system":"epss","scoring_elements":"0.89798","published_at":"2026-06-06T12:55:00Z"},{"value":"0.04906","scoring_system":"epss","scoring_elements":"0.89797","published_at":"2026-06-08T12:55:00Z"},{"value":"0.04906","scoring_system":"epss","scoring_elements":"0.89813","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2417"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=952657","reference_id":"952657","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=952657"},{"reference_url":"https://security.gentoo.org/glsa/201401-30","reference_id":"GLSA-201401-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201401-30"},{"reference_url":"https://security.gentoo.org/glsa/201406-32","reference_id":"GLSA-201406-32","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201406-32"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0751","reference_id":"RHSA-2013:0751","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0751"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0752","reference_id":"RHSA-2013:0752","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0752"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0757","reference_id":"RHSA-2013:0757","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0757"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0758","reference_id":"RHSA-2013:0758","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0758"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0770","reference_id":"RHSA-2013:0770","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0770"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0822","reference_id":"RHSA-2013:0822","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0822"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0823","reference_id":"RHSA-2013:0823","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0823"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0855","reference_id":"RHSA-2013:0855","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0855"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1455","reference_id":"RHSA-2013:1455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1455"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1456","reference_id":"RHSA-2013:1456","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1456"},{"reference_url":"https://usn.ubuntu.com/1806-1/","reference_id":"USN-1806-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1806-1/"},{"reference_url":"https://usn.ubuntu.com/1819-1/","reference_id":"USN-1819-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1819-1/"}],"fixed_packages":[],"aliases":["CVE-2013-2417"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-u4nj-dy1g-uuat"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/61370?format=json","vulnerability_id":"VCID-umbv-yqxu-cubb","summary":"The TLS protocol 1.1 and 1.2 and the DTLS protocol 1.0 and 1.2, as used in OpenSSL, OpenJDK, PolarSSL, and other products, do not properly consider timing side-channel attacks on a MAC check requirement during the processing of malformed CBC padding, which allows remote attackers to conduct distinguishing attacks and plaintext-recovery attacks via statistical analysis of timing data for crafted packets, aka the \"Lucky Thirteen\" issue.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-0169.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-0169.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-0169","reference_id":"","reference_type":"","scores":[{"value":"0.00943","scoring_system":"epss","scoring_elements":"0.76636","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00943","scoring_system":"epss","scoring_elements":"0.76666","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00943","scoring_system":"epss","scoring_elements":"0.76672","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00943","scoring_system":"epss","scoring_elements":"0.76661","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00943","scoring_system":"epss","scoring_elements":"0.76651","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00943","scoring_system":"epss","scoring_elements":"0.76673","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-0169"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0169","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0169"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=699885","reference_id":"699885","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=699885"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=699888","reference_id":"699888","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=699888"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=699889","reference_id":"699889","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=699889"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=907589","reference_id":"907589","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=907589"},{"reference_url":"https://security.gentoo.org/glsa/201310-10","reference_id":"GLSA-201310-10","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201310-10"},{"reference_url":"https://security.gentoo.org/glsa/201312-03","reference_id":"GLSA-201312-03","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201312-03"},{"reference_url":"https://security.gentoo.org/glsa/201401-30","reference_id":"GLSA-201401-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201401-30"},{"reference_url":"https://security.gentoo.org/glsa/201406-32","reference_id":"GLSA-201406-32","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201406-32"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0273","reference_id":"RHSA-2013:0273","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0273"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0274","reference_id":"RHSA-2013:0274","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0274"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0275","reference_id":"RHSA-2013:0275","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0275"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0531","reference_id":"RHSA-2013:0531","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0531"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0532","reference_id":"RHSA-2013:0532","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0532"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0587","reference_id":"RHSA-2013:0587","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0587"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0636","reference_id":"RHSA-2013:0636","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0636"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0782","reference_id":"RHSA-2013:0782","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0782"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0783","reference_id":"RHSA-2013:0783","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0783"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0822","reference_id":"RHSA-2013:0822","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0822"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0823","reference_id":"RHSA-2013:0823","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0823"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0833","reference_id":"RHSA-2013:0833","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0833"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0855","reference_id":"RHSA-2013:0855","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0855"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1013","reference_id":"RHSA-2013:1013","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1013"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1455","reference_id":"RHSA-2013:1455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1455"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1456","reference_id":"RHSA-2013:1456","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1456"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0416","reference_id":"RHSA-2014:0416","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0416"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4298","reference_id":"RHSA-2020:4298","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4298"},{"reference_url":"https://usn.ubuntu.com/1732-1/","reference_id":"USN-1732-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1732-1/"},{"reference_url":"https://usn.ubuntu.com/1732-3/","reference_id":"USN-1732-3","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1732-3/"},{"reference_url":"https://usn.ubuntu.com/1735-1/","reference_id":"USN-1735-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1735-1/"}],"fixed_packages":[],"aliases":["CVE-2013-0169"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-umbv-yqxu-cubb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/114750?format=json","vulnerability_id":"VCID-v5n4-76uw-v7b6","summary":"OpenJDK: java.beans.ThreadGroupContext missing restrictions (Beans, 7200507)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1558.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1558.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-1558","reference_id":"","reference_type":"","scores":[{"value":"0.05406","scoring_system":"epss","scoring_elements":"0.903","published_at":"2026-06-04T12:55:00Z"},{"value":"0.05406","scoring_system":"epss","scoring_elements":"0.90315","published_at":"2026-06-05T12:55:00Z"},{"value":"0.05406","scoring_system":"epss","scoring_elements":"0.90314","published_at":"2026-06-06T12:55:00Z"},{"value":"0.05406","scoring_system":"epss","scoring_elements":"0.90312","published_at":"2026-06-08T12:55:00Z"},{"value":"0.05406","scoring_system":"epss","scoring_elements":"0.90328","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-1558"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=952640","reference_id":"952640","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=952640"},{"reference_url":"https://security.gentoo.org/glsa/201401-30","reference_id":"GLSA-201401-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201401-30"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0751","reference_id":"RHSA-2013:0751","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0751"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0752","reference_id":"RHSA-2013:0752","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0752"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0757","reference_id":"RHSA-2013:0757","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0757"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0758","reference_id":"RHSA-2013:0758","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0758"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0770","reference_id":"RHSA-2013:0770","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0770"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0822","reference_id":"RHSA-2013:0822","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0822"},{"reference_url":"https://usn.ubuntu.com/1806-1/","reference_id":"USN-1806-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1806-1/"},{"reference_url":"https://usn.ubuntu.com/1819-1/","reference_id":"USN-1819-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1819-1/"}],"fixed_packages":[],"aliases":["CVE-2013-1558"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-v5n4-76uw-v7b6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/114790?format=json","vulnerability_id":"VCID-w6s3-q1qj-bkda","summary":"JDK: multiple unspecified JavaFX vulnerabilities fixed in 7u21 (JavaFX)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2438.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2438.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2438","reference_id":"","reference_type":"","scores":[{"value":"0.00769","scoring_system":"epss","scoring_elements":"0.73868","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00769","scoring_system":"epss","scoring_elements":"0.73904","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00769","scoring_system":"epss","scoring_elements":"0.7391","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00769","scoring_system":"epss","scoring_elements":"0.73896","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00769","scoring_system":"epss","scoring_elements":"0.73879","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00769","scoring_system":"epss","scoring_elements":"0.73906","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2438"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=953135","reference_id":"953135","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=953135"},{"reference_url":"https://security.gentoo.org/glsa/201401-30","reference_id":"GLSA-201401-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201401-30"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0757","reference_id":"RHSA-2013:0757","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0757"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0822","reference_id":"RHSA-2013:0822","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0822"}],"fixed_packages":[],"aliases":["CVE-2013-2438"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-w6s3-q1qj-bkda"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/114793?format=json","vulnerability_id":"VCID-wwds-v5z4-ebf4","summary":"JDK: unspecified vulnerability fixed in 7u21 and 6u45 (2D)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2394.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2394.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2394","reference_id":"","reference_type":"","scores":[{"value":"0.06119","scoring_system":"epss","scoring_elements":"0.90948","published_at":"2026-06-04T12:55:00Z"},{"value":"0.06119","scoring_system":"epss","scoring_elements":"0.90961","published_at":"2026-06-05T12:55:00Z"},{"value":"0.06119","scoring_system":"epss","scoring_elements":"0.9096","published_at":"2026-06-06T12:55:00Z"},{"value":"0.06119","scoring_system":"epss","scoring_elements":"0.90957","published_at":"2026-06-07T12:55:00Z"},{"value":"0.06119","scoring_system":"epss","scoring_elements":"0.90954","published_at":"2026-06-08T12:55:00Z"},{"value":"0.06119","scoring_system":"epss","scoring_elements":"0.90971","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2394"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=953265","reference_id":"953265","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=953265"},{"reference_url":"https://security.gentoo.org/glsa/201401-30","reference_id":"GLSA-201401-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201401-30"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0757","reference_id":"RHSA-2013:0757","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0757"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0758","reference_id":"RHSA-2013:0758","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0758"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0822","reference_id":"RHSA-2013:0822","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0822"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0823","reference_id":"RHSA-2013:0823","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0823"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0855","reference_id":"RHSA-2013:0855","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0855"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1455","reference_id":"RHSA-2013:1455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1455"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1456","reference_id":"RHSA-2013:1456","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1456"}],"fixed_packages":[],"aliases":["CVE-2013-2394"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-wwds-v5z4-ebf4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/114751?format=json","vulnerability_id":"VCID-xj8n-g9m3-8qam","summary":"OpenJDK: MethodUtil trampoline class incorrect restrictions (Libraries, 8009857)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2422.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2422.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2422","reference_id":"","reference_type":"","scores":[{"value":"0.15487","scoring_system":"epss","scoring_elements":"0.94789","published_at":"2026-06-04T12:55:00Z"},{"value":"0.15487","scoring_system":"epss","scoring_elements":"0.94798","published_at":"2026-06-05T12:55:00Z"},{"value":"0.15487","scoring_system":"epss","scoring_elements":"0.94799","published_at":"2026-06-06T12:55:00Z"},{"value":"0.15487","scoring_system":"epss","scoring_elements":"0.948","published_at":"2026-06-08T12:55:00Z"},{"value":"0.15487","scoring_system":"epss","scoring_elements":"0.94804","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2422"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=952642","reference_id":"952642","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=952642"},{"reference_url":"https://security.gentoo.org/glsa/201401-30","reference_id":"GLSA-201401-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201401-30"},{"reference_url":"https://security.gentoo.org/glsa/201406-32","reference_id":"GLSA-201406-32","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201406-32"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0751","reference_id":"RHSA-2013:0751","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0751"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0752","reference_id":"RHSA-2013:0752","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0752"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0757","reference_id":"RHSA-2013:0757","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0757"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0758","reference_id":"RHSA-2013:0758","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0758"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0770","reference_id":"RHSA-2013:0770","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0770"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0822","reference_id":"RHSA-2013:0822","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0822"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0823","reference_id":"RHSA-2013:0823","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0823"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1455","reference_id":"RHSA-2013:1455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1455"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1456","reference_id":"RHSA-2013:1456","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1456"},{"reference_url":"https://usn.ubuntu.com/1806-1/","reference_id":"USN-1806-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1806-1/"},{"reference_url":"https://usn.ubuntu.com/1819-1/","reference_id":"USN-1819-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1819-1/"}],"fixed_packages":[],"aliases":["CVE-2013-2422"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xj8n-g9m3-8qam"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/114744?format=json","vulnerability_id":"VCID-y97d-vj13-5kga","summary":"OpenJDK: incorrect setter access checks in MethodHandles (Hostspot, 8009677)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2423.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2423.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2423","reference_id":"","reference_type":"","scores":[{"value":"0.93397","scoring_system":"epss","scoring_elements":"0.99824","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2423"},{"reference_url":"http://www.exploit-db.com/exploits/24976","reference_id":"24976","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-10T19:49:17Z/"}],"url":"http://www.exploit-db.com/exploits/24976"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=952398","reference_id":"952398","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-10T19:49:17Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=952398"},{"reference_url":"http://www.mandriva.com/security/advisories?name=MDVSA-2013:161","reference_id":"advisories?name=MDVSA-2013:161","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-10T19:49:17Z/"}],"url":"http://www.mandriva.com/security/advisories?name=MDVSA-2013:161"},{"reference_url":"http://hg.openjdk.java.net/jdk7u/jdk7u-dev/jdk/rev/b453d9be6b3f","reference_id":"b453d9be6b3f","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-10T19:49:17Z/"}],"url":"http://hg.openjdk.java.net/jdk7u/jdk7u-dev/jdk/rev/b453d9be6b3f"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/24976.rb","reference_id":"CVE-2013-2423;OSVDB-92348","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/24976.rb"},{"reference_url":"https://security.gentoo.org/glsa/201401-30","reference_id":"GLSA-201401-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201401-30"},{"reference_url":"https://security.gentoo.org/glsa/201406-32","reference_id":"GLSA-201406-32","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201406-32"},{"reference_url":"http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html","reference_id":"javacpuapr2013-1928497.html","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-10T19:49:17Z/"}],"url":"http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html"},{"reference_url":"http://blog.spiderlabs.com/2013/04/java-is-so-confusing.html","reference_id":"java-is-so-confusing.html","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-10T19:49:17Z/"}],"url":"http://blog.spiderlabs.com/2013/04/java-is-so-confusing.html"},{"reference_url":"https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0130","reference_id":"MGASA-2013-0130","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-10T19:49:17Z/"}],"url":"https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0130"},{"reference_url":"http://lists.opensuse.org/opensuse-updates/2013-06/msg00099.html","reference_id":"msg00099.html","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-10T19:49:17Z/"}],"url":"http://lists.opensuse.org/opensuse-updates/2013-06/msg00099.html"},{"reference_url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16700","reference_id":"oval%3Aorg.mitre.oval%3Adef%3A16700","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-10T19:49:17Z/"}],"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16700"},{"reference_url":"http://weblog.ikvm.net/PermaLink.aspx?guid=acd2dd6d-1028-4996-95df-efa42ac237f0","reference_id":"PermaLink.aspx?guid=acd2dd6d-1028-4996-95df-efa42ac237f0","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-10T19:49:17Z/"}],"url":"http://weblog.ikvm.net/PermaLink.aspx?guid=acd2dd6d-1028-4996-95df-efa42ac237f0"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0751","reference_id":"RHSA-2013:0751","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0751"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0752","reference_id":"RHSA-2013:0752","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0752"},{"reference_url":"http://rhn.redhat.com/errata/RHSA-2013-0752.html","reference_id":"RHSA-2013-0752.html","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-10T19:49:17Z/"}],"url":"http://rhn.redhat.com/errata/RHSA-2013-0752.html"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0757","reference_id":"RHSA-2013:0757","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0757"},{"reference_url":"http://rhn.redhat.com/errata/RHSA-2013-0757.html","reference_id":"RHSA-2013-0757.html","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-10T19:49:17Z/"}],"url":"http://rhn.redhat.com/errata/RHSA-2013-0757.html"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0822","reference_id":"RHSA-2013:0822","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0822"},{"reference_url":"http://blog.fuseyism.com/index.php/2013/04/22/security-icedtea-2-3-9-for-openjdk-7-released/","reference_id":"security-icedtea-2-3-9-for-openjdk-7-released","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-10T19:49:17Z/"}],"url":"http://blog.fuseyism.com/index.php/2013/04/22/security-icedtea-2-3-9-for-openjdk-7-released/"},{"reference_url":"http://www.us-cert.gov/ncas/alerts/TA13-107A","reference_id":"TA13-107A","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-10T19:49:17Z/"}],"url":"http://www.us-cert.gov/ncas/alerts/TA13-107A"},{"reference_url":"https://usn.ubuntu.com/1806-1/","reference_id":"USN-1806-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1806-1/"},{"reference_url":"http://www.ubuntu.com/usn/USN-1806-1","reference_id":"USN-1806-1","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-10T19:49:17Z/"}],"url":"http://www.ubuntu.com/usn/USN-1806-1"}],"fixed_packages":[],"aliases":["CVE-2013-2423"],"risk_score":6.6,"exploitability":"2.0","weighted_severity":"3.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-y97d-vj13-5kga"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/114754?format=json","vulnerability_id":"VCID-ygbg-g8f3-qfd4","summary":"OpenJDK: LogStream.setDefaultStream() missing security restrictions (RMI, 8001329)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1557.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1557.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-1557","reference_id":"","reference_type":"","scores":[{"value":"0.0828","scoring_system":"epss","scoring_elements":"0.92388","published_at":"2026-06-04T12:55:00Z"},{"value":"0.0828","scoring_system":"epss","scoring_elements":"0.92402","published_at":"2026-06-05T12:55:00Z"},{"value":"0.0828","scoring_system":"epss","scoring_elements":"0.92398","published_at":"2026-06-06T12:55:00Z"},{"value":"0.0828","scoring_system":"epss","scoring_elements":"0.92393","published_at":"2026-06-07T12:55:00Z"},{"value":"0.0828","scoring_system":"epss","scoring_elements":"0.92392","published_at":"2026-06-08T12:55:00Z"},{"value":"0.0828","scoring_system":"epss","scoring_elements":"0.92409","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-1557"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=952648","reference_id":"952648","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=952648"},{"reference_url":"https://security.gentoo.org/glsa/201401-30","reference_id":"GLSA-201401-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201401-30"},{"reference_url":"https://security.gentoo.org/glsa/201406-32","reference_id":"GLSA-201406-32","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201406-32"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0751","reference_id":"RHSA-2013:0751","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0751"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0752","reference_id":"RHSA-2013:0752","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0752"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0757","reference_id":"RHSA-2013:0757","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0757"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0758","reference_id":"RHSA-2013:0758","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0758"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0770","reference_id":"RHSA-2013:0770","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0770"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0822","reference_id":"RHSA-2013:0822","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0822"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0823","reference_id":"RHSA-2013:0823","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0823"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0855","reference_id":"RHSA-2013:0855","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0855"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1455","reference_id":"RHSA-2013:1455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1455"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1456","reference_id":"RHSA-2013:1456","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1456"},{"reference_url":"https://usn.ubuntu.com/1806-1/","reference_id":"USN-1806-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1806-1/"},{"reference_url":"https://usn.ubuntu.com/1819-1/","reference_id":"USN-1819-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1819-1/"}],"fixed_packages":[],"aliases":["CVE-2013-1557"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ygbg-g8f3-qfd4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/114748?format=json","vulnerability_id":"VCID-zxht-sr7d-fydv","summary":"OpenJDK: Wrapper.convert insufficient type checks (Libraries, 8009049)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2436.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2436.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2436","reference_id":"","reference_type":"","scores":[{"value":"0.06119","scoring_system":"epss","scoring_elements":"0.90948","published_at":"2026-06-04T12:55:00Z"},{"value":"0.06119","scoring_system":"epss","scoring_elements":"0.90961","published_at":"2026-06-05T12:55:00Z"},{"value":"0.06119","scoring_system":"epss","scoring_elements":"0.9096","published_at":"2026-06-06T12:55:00Z"},{"value":"0.06119","scoring_system":"epss","scoring_elements":"0.90957","published_at":"2026-06-07T12:55:00Z"},{"value":"0.06119","scoring_system":"epss","scoring_elements":"0.90954","published_at":"2026-06-08T12:55:00Z"},{"value":"0.06119","scoring_system":"epss","scoring_elements":"0.90971","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2436"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=952550","reference_id":"952550","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=952550"},{"reference_url":"https://security.gentoo.org/glsa/201401-30","reference_id":"GLSA-201401-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201401-30"},{"reference_url":"https://security.gentoo.org/glsa/201406-32","reference_id":"GLSA-201406-32","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201406-32"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0751","reference_id":"RHSA-2013:0751","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0751"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0752","reference_id":"RHSA-2013:0752","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0752"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0757","reference_id":"RHSA-2013:0757","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0757"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0822","reference_id":"RHSA-2013:0822","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0822"},{"reference_url":"https://usn.ubuntu.com/1806-1/","reference_id":"USN-1806-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1806-1/"}],"fixed_packages":[],"aliases":["CVE-2013-2436"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zxht-sr7d-fydv"}],"fixing_vulnerabilities":[],"risk_score":"6.6","resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.7.0-ibm@1:1.7.0.4.2-1jpp.1%3Farch=el6_4"}