{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/40871?format=json","vulnerability_id":"VCID-99pg-zyzv-7fdt","summary":"Multiple vulnerabilities have been found in the Oracle JRE/JDK,\n    allowing attackers to cause unspecified impact.","aliases":[{"alias":"CVE-2010-3552"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/75577?format=json","purl":"pkg:ebuild/app-emulation/emul-linux-x86-java@1.6.0.29","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/app-emulation/emul-linux-x86-java@1.6.0.29"},{"url":"http://public2.vulnerablecode.io/api/packages/75578?format=json","purl":"pkg:ebuild/dev-java/sun-jdk@1.6.0.29","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-java/sun-jdk@1.6.0.29"},{"url":"http://public2.vulnerablecode.io/api/packages/75576?format=json","purl":"pkg:ebuild/dev-java/sun-jre-bin@1.6.0.29","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-java/sun-jre-bin@1.6.0.29"}],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/127613?format=json","purl":"pkg:rpm/redhat/java-1.6.0-sun@1:1.6.0.22-1jpp.1?arch=el4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1yyz-wmtf-n7af"},{"vulnerability":"VCID-36qa-spf2-hugr"},{"vulnerability":"VCID-4g9p-kms6-33fy"},{"vulnerability":"VCID-5uvz-3ua4-63ec"},{"vulnerability":"VCID-6573-arns-dubp"},{"vulnerability":"VCID-6d27-47wg-v7a2"},{"vulnerability":"VCID-6f4g-2v9h-e3d2"},{"vulnerability":"VCID-8y28-vhbf-pkh4"},{"vulnerability":"VCID-96cv-7mvp-kyfn"},{"vulnerability":"VCID-99pg-zyzv-7fdt"},{"vulnerability":"VCID-b36c-f5yd-pbc6"},{"vulnerability":"VCID-bnn4-y7cn-7kd4"},{"vulnerability":"VCID-bvvb-wkh7-wyhd"},{"vulnerability":"VCID-dfrc-cgad-9bft"},{"vulnerability":"VCID-dnjn-pxun-p7c5"},{"vulnerability":"VCID-hff9-wv9j-ffh9"},{"vulnerability":"VCID-jau7-gfz8-dkfa"},{"vulnerability":"VCID-jfb1-3vg4-vbap"},{"vulnerability":"VCID-k4uz-574m-aqd3"},{"vulnerability":"VCID-mmrp-aqn2-nkd1"},{"vulnerability":"VCID-mqdc-3qdf-efhs"},{"vulnerability":"VCID-naeq-2b67-w3fs"},{"vulnerability":"VCID-nz67-hrxz-d7g8"},{"vulnerability":"VCID-p26v-kd5w-s3bv"},{"vulnerability":"VCID-sn49-t5fd-u3hc"},{"vulnerability":"VCID-u2yt-tapf-abhe"},{"vulnerability":"VCID-vhx7-rx69-n3hz"},{"vulnerability":"VCID-ynn9-thtp-wkbh"},{"vulnerability":"VCID-yyav-75eb-e3av"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.6.0-sun@1:1.6.0.22-1jpp.1%3Farch=el4"},{"url":"http://public2.vulnerablecode.io/api/packages/127614?format=json","purl":"pkg:rpm/redhat/java-1.6.0-sun@1:1.6.0.22-1jpp.1?arch=el5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1yyz-wmtf-n7af"},{"vulnerability":"VCID-36qa-spf2-hugr"},{"vulnerability":"VCID-4g9p-kms6-33fy"},{"vulnerability":"VCID-5uvz-3ua4-63ec"},{"vulnerability":"VCID-6573-arns-dubp"},{"vulnerability":"VCID-6d27-47wg-v7a2"},{"vulnerability":"VCID-6f4g-2v9h-e3d2"},{"vulnerability":"VCID-8y28-vhbf-pkh4"},{"vulnerability":"VCID-96cv-7mvp-kyfn"},{"vulnerability":"VCID-99pg-zyzv-7fdt"},{"vulnerability":"VCID-b36c-f5yd-pbc6"},{"vulnerability":"VCID-bnn4-y7cn-7kd4"},{"vulnerability":"VCID-bvvb-wkh7-wyhd"},{"vulnerability":"VCID-dfrc-cgad-9bft"},{"vulnerability":"VCID-dnjn-pxun-p7c5"},{"vulnerability":"VCID-hff9-wv9j-ffh9"},{"vulnerability":"VCID-jau7-gfz8-dkfa"},{"vulnerability":"VCID-jfb1-3vg4-vbap"},{"vulnerability":"VCID-k4uz-574m-aqd3"},{"vulnerability":"VCID-mmrp-aqn2-nkd1"},{"vulnerability":"VCID-mqdc-3qdf-efhs"},{"vulnerability":"VCID-naeq-2b67-w3fs"},{"vulnerability":"VCID-nz67-hrxz-d7g8"},{"vulnerability":"VCID-p26v-kd5w-s3bv"},{"vulnerability":"VCID-sn49-t5fd-u3hc"},{"vulnerability":"VCID-u2yt-tapf-abhe"},{"vulnerability":"VCID-vhx7-rx69-n3hz"},{"vulnerability":"VCID-ynn9-thtp-wkbh"},{"vulnerability":"VCID-yyav-75eb-e3av"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.6.0-sun@1:1.6.0.22-1jpp.1%3Farch=el5"}],"references":[{"reference_url":"http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c02616748","reference_id":"","reference_type":"","scores":[],"url":"http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c02616748"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.html","reference_id":"","reference_type":"","scores":[],"url":"http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.html"},{"reference_url":"http://marc.info/?l=bugtraq&m=134254866602253&w=2","reference_id":"","reference_type":"","scores":[],"url":"http://marc.info/?l=bugtraq&m=134254866602253&w=2"},{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-3552.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-3552.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2010-3552","reference_id":"","reference_type":"","scores":[{"value":"0.82665","scoring_system":"epss","scoring_elements":"0.9923","published_at":"2026-04-02T12:55:00Z"},{"value":"0.82665","scoring_system":"epss","scoring_elements":"0.99233","published_at":"2026-04-04T12:55:00Z"},{"value":"0.82665","scoring_system":"epss","scoring_elements":"0.99228","published_at":"2026-04-01T12:55:00Z"},{"value":"0.82947","scoring_system":"epss","scoring_elements":"0.99252","published_at":"2026-04-13T12:55:00Z"},{"value":"0.82947","scoring_system":"epss","scoring_elements":"0.99253","published_at":"2026-04-16T12:55:00Z"},{"value":"0.82947","scoring_system":"epss","scoring_elements":"0.99254","published_at":"2026-04-21T12:55:00Z"},{"value":"0.82947","scoring_system":"epss","scoring_elements":"0.99258","published_at":"2026-04-26T12:55:00Z"},{"value":"0.82947","scoring_system":"epss","scoring_elements":"0.99259","published_at":"2026-04-29T12:55:00Z"},{"value":"0.82947","scoring_system":"epss","scoring_elements":"0.99263","published_at":"2026-05-05T12:55:00Z"},{"value":"0.82947","scoring_system":"epss","scoring_elements":"0.99264","published_at":"2026-05-11T12:55:00Z"},{"value":"0.82947","scoring_system":"epss","scoring_elements":"0.99266","published_at":"2026-05-12T12:55:00Z"},{"value":"0.82947","scoring_system":"epss","scoring_elements":"0.99268","published_at":"2026-05-14T12:55:00Z"},{"value":"0.82947","scoring_system":"epss","scoring_elements":"0.9925","published_at":"2026-04-07T12:55:00Z"},{"value":"0.82947","scoring_system":"epss","scoring_elements":"0.99251","published_at":"2026-04-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2010-3552"},{"reference_url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11829","reference_id":"","reference_type":"","scores":[],"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11829"},{"reference_url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12004","reference_id":"","reference_type":"","scores":[],"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12004"},{"reference_url":"http://support.avaya.com/css/P8/documents/100114315","reference_id":"","reference_type":"","scores":[],"url":"http://support.avaya.com/css/P8/documents/100114315"},{"reference_url":"http://support.avaya.com/css/P8/documents/100123193","reference_id":"","reference_type":"","scores":[],"url":"http://support.avaya.com/css/P8/documents/100123193"},{"reference_url":"http://www.oracle.com/technetwork/topics/security/javacpuoct2010-176258.html","reference_id":"","reference_type":"","scores":[],"url":"http://www.oracle.com/technetwork/topics/security/javacpuoct2010-176258.html"},{"reference_url":"http://www.redhat.com/support/errata/RHSA-2010-0770.html","reference_id":"","reference_type":"","scores":[],"url":"http://www.redhat.com/support/errata/RHSA-2010-0770.html"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=642600","reference_id":"642600","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=642600"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jdk:1.6.0:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:sun:jdk:1.6.0:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jdk:1.6.0:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jdk:1.6.0:update1:*:*:*:*:*:*","reference_id":"cpe:2.3:a:sun:jdk:1.6.0:update1:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jdk:1.6.0:update1:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jdk:1.6.0:update_10:*:*:*:*:*:*","reference_id":"cpe:2.3:a:sun:jdk:1.6.0:update_10:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jdk:1.6.0:update_10:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jdk:1.6.0:update_11:*:*:*:*:*:*","reference_id":"cpe:2.3:a:sun:jdk:1.6.0:update_11:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jdk:1.6.0:update_11:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jdk:1.6.0:update_12:*:*:*:*:*:*","reference_id":"cpe:2.3:a:sun:jdk:1.6.0:update_12:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jdk:1.6.0:update_12:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jdk:1.6.0:update_13:*:*:*:*:*:*","reference_id":"cpe:2.3:a:sun:jdk:1.6.0:update_13:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jdk:1.6.0:update_13:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jdk:1.6.0:update_14:*:*:*:*:*:*","reference_id":"cpe:2.3:a:sun:jdk:1.6.0:update_14:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jdk:1.6.0:update_14:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jdk:1.6.0:update_15:*:*:*:*:*:*","reference_id":"cpe:2.3:a:sun:jdk:1.6.0:update_15:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jdk:1.6.0:update_15:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jdk:1.6.0:update_16:*:*:*:*:*:*","reference_id":"cpe:2.3:a:sun:jdk:1.6.0:update_16:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jdk:1.6.0:update_16:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jdk:1.6.0:update_17:*:*:*:*:*:*","reference_id":"cpe:2.3:a:sun:jdk:1.6.0:update_17:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jdk:1.6.0:update_17:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jdk:1.6.0:update_18:*:*:*:*:*:*","reference_id":"cpe:2.3:a:sun:jdk:1.6.0:update_18:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jdk:1.6.0:update_18:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jdk:1.6.0:update_19:*:*:*:*:*:*","reference_id":"cpe:2.3:a:sun:jdk:1.6.0:update_19:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jdk:1.6.0:update_19:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jdk:1.6.0:update1_b06:*:*:*:*:*:*","reference_id":"cpe:2.3:a:sun:jdk:1.6.0:update1_b06:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jdk:1.6.0:update1_b06:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jdk:1.6.0:update2:*:*:*:*:*:*","reference_id":"cpe:2.3:a:sun:jdk:1.6.0:update2:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jdk:1.6.0:update2:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jdk:1.6.0:update_20:*:*:*:*:*:*","reference_id":"cpe:2.3:a:sun:jdk:1.6.0:update_20:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jdk:1.6.0:update_20:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jdk:1.6.0:update_3:*:*:*:*:*:*","reference_id":"cpe:2.3:a:sun:jdk:1.6.0:update_3:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jdk:1.6.0:update_3:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jdk:1.6.0:update_4:*:*:*:*:*:*","reference_id":"cpe:2.3:a:sun:jdk:1.6.0:update_4:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jdk:1.6.0:update_4:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jdk:1.6.0:update_5:*:*:*:*:*:*","reference_id":"cpe:2.3:a:sun:jdk:1.6.0:update_5:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jdk:1.6.0:update_5:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jdk:1.6.0:update_6:*:*:*:*:*:*","reference_id":"cpe:2.3:a:sun:jdk:1.6.0:update_6:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jdk:1.6.0:update_6:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jdk:1.6.0:update_7:*:*:*:*:*:*","reference_id":"cpe:2.3:a:sun:jdk:1.6.0:update_7:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jdk:1.6.0:update_7:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jdk:*:update_21:*:*:*:*:*:*","reference_id":"cpe:2.3:a:sun:jdk:*:update_21:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jdk:*:update_21:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jre:1.6.0:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:sun:jre:1.6.0:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jre:1.6.0:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jre:1.6.0:update_1:*:*:*:*:*:*","reference_id":"cpe:2.3:a:sun:jre:1.6.0:update_1:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jre:1.6.0:update_1:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jre:1.6.0:update_10:*:*:*:*:*:*","reference_id":"cpe:2.3:a:sun:jre:1.6.0:update_10:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jre:1.6.0:update_10:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jre:1.6.0:update_11:*:*:*:*:*:*","reference_id":"cpe:2.3:a:sun:jre:1.6.0:update_11:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jre:1.6.0:update_11:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jre:1.6.0:update_12:*:*:*:*:*:*","reference_id":"cpe:2.3:a:sun:jre:1.6.0:update_12:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jre:1.6.0:update_12:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jre:1.6.0:update_13:*:*:*:*:*:*","reference_id":"cpe:2.3:a:sun:jre:1.6.0:update_13:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jre:1.6.0:update_13:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jre:1.6.0:update_14:*:*:*:*:*:*","reference_id":"cpe:2.3:a:sun:jre:1.6.0:update_14:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jre:1.6.0:update_14:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jre:1.6.0:update_15:*:*:*:*:*:*","reference_id":"cpe:2.3:a:sun:jre:1.6.0:update_15:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jre:1.6.0:update_15:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jre:1.6.0:update_16:*:*:*:*:*:*","reference_id":"cpe:2.3:a:sun:jre:1.6.0:update_16:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jre:1.6.0:update_16:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jre:1.6.0:update_17:*:*:*:*:*:*","reference_id":"cpe:2.3:a:sun:jre:1.6.0:update_17:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jre:1.6.0:update_17:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jre:1.6.0:update_18:*:*:*:*:*:*","reference_id":"cpe:2.3:a:sun:jre:1.6.0:update_18:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jre:1.6.0:update_18:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jre:1.6.0:update_19:*:*:*:*:*:*","reference_id":"cpe:2.3:a:sun:jre:1.6.0:update_19:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jre:1.6.0:update_19:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jre:1.6.0:update_2:*:*:*:*:*:*","reference_id":"cpe:2.3:a:sun:jre:1.6.0:update_2:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jre:1.6.0:update_2:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jre:1.6.0:update_20:*:*:*:*:*:*","reference_id":"cpe:2.3:a:sun:jre:1.6.0:update_20:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jre:1.6.0:update_20:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jre:1.6.0:update_3:*:*:*:*:*:*","reference_id":"cpe:2.3:a:sun:jre:1.6.0:update_3:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jre:1.6.0:update_3:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jre:1.6.0:update_4:*:*:*:*:*:*","reference_id":"cpe:2.3:a:sun:jre:1.6.0:update_4:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jre:1.6.0:update_4:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jre:1.6.0:update_5:*:*:*:*:*:*","reference_id":"cpe:2.3:a:sun:jre:1.6.0:update_5:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jre:1.6.0:update_5:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jre:1.6.0:update_6:*:*:*:*:*:*","reference_id":"cpe:2.3:a:sun:jre:1.6.0:update_6:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jre:1.6.0:update_6:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jre:1.6.0:update_7:*:*:*:*:*:*","reference_id":"cpe:2.3:a:sun:jre:1.6.0:update_7:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jre:1.6.0:update_7:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jre:*:update_21:*:*:*:*:*:*","reference_id":"cpe:2.3:a:sun:jre:*:update_21:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sun:jre:*:update_21:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2010-3552","reference_id":"CVE-2010-3552","reference_type":"","scores":[{"value":"10.0","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:L/Au:N/C:C/I:C/A:C"}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2010-3552"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/15241.txt","reference_id":"CVE-2010-3552;OSVDB-68873","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/15241.txt"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/16587.rb","reference_id":"CVE-2010-3552;OSVDB-68873","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/16587.rb"},{"reference_url":"http://www.zerodayinitiative.com/advisories/ZDI-10-206/","reference_id":"CVE-2010-3552;OSVDB-68873","reference_type":"exploit","scores":[],"url":"http://www.zerodayinitiative.com/advisories/ZDI-10-206/"},{"reference_url":"https://security.gentoo.org/glsa/201111-02","reference_id":"GLSA-201111-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201111-02"}],"weaknesses":[],"exploits":[{"date_added":null,"description":"This module exploits a flaw in the new plugin component of the Sun Java\n          Runtime Environment before v6 Update 22. By specifying specific parameters\n          to the new plugin, an attacker can cause a stack-based buffer overflow and\n          execute arbitrary code.\n\n          When the new plugin is invoked with a \"launchjnlp\" parameter, it will\n          copy the contents of the \"docbase\" parameter to a stack-buffer using the\n          \"sprintf\" function. A string of 396 bytes is enough to overflow the 256\n          byte stack buffer and overwrite some local variables as well as the saved\n          return address.\n\n          NOTE: The string being copied is first passed through the \"WideCharToMultiByte\".\n          Due to this, only characters which have a valid localized multibyte\n          representation are allowed. Invalid characters will be replaced with\n          question marks ('?').\n\n          This vulnerability was originally discovered independently by both Stephen\n          Fewer and Berend Jan Wever (SkyLined). Although exhaustive testing hasn't\n          been done, all versions since version 6 Update 10 are believed to be affected\n          by this vulnerability.\n\n          This vulnerability was patched as part of the October 2010 Oracle Patch\n          release.","required_action":null,"due_date":null,"notes":"Reliability:\n  - unknown-reliability\nStability:\n  - unknown-stability\nSideEffects:\n  - unknown-side-effects\n","known_ransomware_campaign_use":false,"source_date_published":"2010-10-12","exploit_type":null,"platform":"Windows","source_date_updated":null,"data_source":"Metasploit","source_url":"https://github.com/rapid7/metasploit-framework/tree/master/modules/exploits/windows/browser/java_docbase_bof.rb"},{"date_added":"2011-01-08","description":"Sun Java - Runtime New Plugin docbase Buffer Overflow (Metasploit)","required_action":null,"due_date":null,"notes":null,"known_ransomware_campaign_use":true,"source_date_published":"2011-01-08","exploit_type":"remote","platform":"windows","source_date_updated":"2011-03-10","data_source":"Exploit-DB","source_url":"http://www.zerodayinitiative.com/advisories/ZDI-10-206/"}],"severity_range_score":"10.0 - 10.0","exploitability":"2.0","weighted_severity":"9.0","risk_score":10.0,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-99pg-zyzv-7fdt"}