Search for vulnerabilities
Vulnerability details: VCID-m5cv-a7rf-aaac
Vulnerability ID VCID-m5cv-a7rf-aaac
Aliases CVE-2017-10118
Summary Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JCE). Supported versions that are affected are Java SE: 7u141 and 8u131; Java SE Embedded: 8u131; JRockit: R28.3.14. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, JRockit. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Java SE, Java SE Embedded, JRockit accessible data. Note: This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 7.5 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N).
Status Published
Exploitability 0.5
Weighted Severity 9.0
Risk 4.5
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-385 Covert Timing Channel
System Score Found at
generic_textual Medium http://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-10118.html
rhas Critical https://access.redhat.com/errata/RHSA-2017:1790
ssvc Track https://access.redhat.com/errata/RHSA-2017:1790
rhas Critical https://access.redhat.com/errata/RHSA-2017:1791
ssvc Track https://access.redhat.com/errata/RHSA-2017:1791
cvssv3 7.5 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10118.json
epss 0.00183 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00183 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00183 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00183 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00183 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00183 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00183 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00183 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00183 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00183 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00183 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00183 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00260 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00260 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00260 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00260 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00446 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00483 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00483 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00483 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00483 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00483 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00483 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00483 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00483 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00483 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00483 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00483 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.00483 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
epss 0.01727 https://api.first.org/data/v1/epss?cve=CVE-2017-10118
rhbs medium https://bugzilla.redhat.com/show_bug.cgi?id=1472470
generic_textual Low https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10053
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10067
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10074
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10078
generic_textual Low https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10081
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10087
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10089
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10090
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10096
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10101
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10102
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10107
generic_textual Low https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10108
generic_textual Low https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10109
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10110
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10111
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10115
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10116
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10118
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10135
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10176
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10193
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10198
generic_textual Low https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10243
cvssv2 7.8 https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
cvssv3 7.5 https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
cvssv2 5.0 https://nvd.nist.gov/vuln/detail/CVE-2017-10118
cvssv3 7.5 https://nvd.nist.gov/vuln/detail/CVE-2017-10118
cvssv3.1 7.5 https://nvd.nist.gov/vuln/detail/CVE-2017-10118
generic_textual Low https://ubuntu.com/security/notices/USN-3366-1
generic_textual Low https://ubuntu.com/security/notices/USN-3396-1
generic_textual Low https://usn.ubuntu.com/usn/usn-3366-1
generic_textual Low https://usn.ubuntu.com/usn/usn-3396-1
cvssv3.1 9.8 http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html
generic_textual CRITICAL http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html
generic_textual Low http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html#AppendixJAVA
generic_textual Low http://www.oracle.com/technetwork/security-advisory/cpujul2017verbose-3236625.html#JAVA
Reference id Reference type URL
http://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-10118.html
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10118.json
https://api.first.org/data/v1/epss?cve=CVE-2017-10118
https://cert.vde.com/en-us/advisories/vde-2017-002
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10053
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10067
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10074
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10078
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10081
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10087
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10089
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10090
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10096
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10101
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10102
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10107
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10108
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10109
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10110
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10111
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10115
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10116
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10118
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10135
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10176
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10193
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10198
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10243
https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
https://security.gentoo.org/glsa/201709-22
https://security.netapp.com/advisory/ntap-20170720-0001/
https://ubuntu.com/security/notices/USN-3366-1
https://ubuntu.com/security/notices/USN-3396-1
https://usn.ubuntu.com/usn/usn-3366-1
https://usn.ubuntu.com/usn/usn-3396-1
http://www.debian.org/security/2017/dsa-3919
http://www.debian.org/security/2017/dsa-3954
http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html
http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html#AppendixJAVA
http://www.oracle.com/technetwork/security-advisory/cpujul2017verbose-3236625.html#JAVA
http://www.securityfocus.com/bid/99782
http://www.securitytracker.com/id/1038931
1472470 https://bugzilla.redhat.com/show_bug.cgi?id=1472470
cpe:2.3:a:netapp:active_iq_unified_manager:*:*:*:*:*:vmware_vsphere:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:active_iq_unified_manager:*:*:*:*:*:vmware_vsphere:*:*
cpe:2.3:a:netapp:active_iq_unified_manager:*:*:*:*:*:windows:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:active_iq_unified_manager:*:*:*:*:*:windows:*:*
cpe:2.3:a:netapp:cloud_backup:-:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:cloud_backup:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:element_software:-:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:element_software:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:e-series_santricity_os_controller:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:e-series_santricity_os_controller:*:*:*:*:*:*:*:*
cpe:2.3:a:netapp:e-series_santricity_storage_manager:-:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:e-series_santricity_storage_manager:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:oncommand_balance:-:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:oncommand_balance:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:oncommand_performance_manager:-:*:*:*:*:vmware_vsphere:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:oncommand_performance_manager:-:*:*:*:*:vmware_vsphere:*:*
cpe:2.3:a:netapp:oncommand_shift:-:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:oncommand_shift:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:oncommand_unified_manager:-:*:*:*:*:7-mode:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:oncommand_unified_manager:-:*:*:*:*:7-mode:*:*
cpe:2.3:a:netapp:oncommand_unified_manager:*:*:*:*:*:vsphere:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:oncommand_unified_manager:*:*:*:*:*:vsphere:*:*
cpe:2.3:a:netapp:oncommand_unified_manager:*:*:*:*:*:windows:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:oncommand_unified_manager:*:*:*:*:*:windows:*:*
cpe:2.3:a:netapp:plug-in_for_symantec_netbackup:-:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:plug-in_for_symantec_netbackup:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:oracle:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:oracle:*:*
cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:sap:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:sap:*:*
cpe:2.3:a:netapp:steelstore_cloud_integrated_storage:-:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:steelstore_cloud_integrated_storage:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:storage_replication_adapter_for_clustered_data_ontap:9.6:*:*:*:*:vmware_vsphere:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:storage_replication_adapter_for_clustered_data_ontap:9.6:*:*:*:*:vmware_vsphere:*:*
cpe:2.3:a:netapp:storage_replication_adapter_for_clustered_data_ontap:*:*:*:*:*:windows:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:storage_replication_adapter_for_clustered_data_ontap:*:*:*:*:*:windows:*:*
cpe:2.3:a:netapp:vasa_provider_for_clustered_data_ontap:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:vasa_provider_for_clustered_data_ontap:*:*:*:*:*:*:*:*
cpe:2.3:a:netapp:vasa_provider_for_clustered_data_ontap:6.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:vasa_provider_for_clustered_data_ontap:6.0:*:*:*:*:*:*:*
cpe:2.3:a:netapp:virtual_storage_console:6.0:*:*:*:*:vmware_vsphere:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:virtual_storage_console:6.0:*:*:*:*:vmware_vsphere:*:*
cpe:2.3:a:netapp:virtual_storage_console:*:*:*:*:*:vmware_vsphere:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:virtual_storage_console:*:*:*:*:*:vmware_vsphere:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update141:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jdk:1.7.0:update141:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.8.0:update131:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jdk:1.8.0:update131:*:*:*:*:*:*
cpe:2.3:a:oracle:jre:1.7.0:update141:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jre:1.7.0:update141:*:*:*:*:*:*
cpe:2.3:a:oracle:jre:1.8.0:update131:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jre:1.8.0:update131:*:*:*:*:*:*
cpe:2.3:a:oracle:jrockit:r28.3.14:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jrockit:r28.3.14:*:*:*:*:*:*:*
cpe:2.3:a:phoenixcontact:fl_mguard_dm:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:phoenixcontact:fl_mguard_dm:*:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
CVE-2017-10118 https://nvd.nist.gov/vuln/detail/CVE-2017-10118
RHSA-2017:1790 https://access.redhat.com/errata/RHSA-2017:1790
RHSA-2017:1791 https://access.redhat.com/errata/RHSA-2017:1791
USN-3366-1 https://usn.ubuntu.com/3366-1/
USN-3396-1 https://usn.ubuntu.com/3396-1/
No exploits are available.
Vector: SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-04T15:39:34Z/ Found at https://access.redhat.com/errata/RHSA-2017:1790
Vector: SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-04T15:39:34Z/ Found at https://access.redhat.com/errata/RHSA-2017:1791
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N Found at https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10118.json
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: AV:N/AC:L/Au:N/C:C/I:N/A:N Found at https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N Found at https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N Found at https://nvd.nist.gov/vuln/detail/CVE-2017-10118
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N Found at https://nvd.nist.gov/vuln/detail/CVE-2017-10118
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N Found at https://nvd.nist.gov/vuln/detail/CVE-2017-10118
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Found at http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Exploit Prediction Scoring System (EPSS)
Percentile 0.56295
EPSS Score 0.00183
Published At Nov. 1, 2024, midnight
Date Actor Action Source VulnerableCode Version
There are no relevant records.