Search for vulnerabilities
Vulnerability details: VCID-xraf-cgde-aaaa
Vulnerability ID VCID-xraf-cgde-aaaa
Aliases CVE-2010-4351
Summary CVE-2010-4351 IcedTea jnlp security manager bypass
Status Published
Exploitability 0.5
Weighted Severity 6.2
Risk 3.1
Affected and Fixed Packages Package Details
Weaknesses (3)
CWE-264 Permissions, Privileges, and Access Controls
CWE-393 Return of Wrong Status Code
CWE-305 Authentication Bypass by Primary Weakness
System Score Found at
rhas Moderate https://access.redhat.com/errata/RHSA-2011:0176
epss 0.00959 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.00959 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.00959 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.00959 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01026 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01026 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01026 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01026 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01026 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01026 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01026 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01026 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01026 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01026 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01026 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01026 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.01585 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
epss 0.03051 https://api.first.org/data/v1/epss?cve=CVE-2010-4351
generic_textual HIGH http://security.gentoo.org/glsa/glsa-201406-32.xml
cvssv2 6.8 https://nvd.nist.gov/vuln/detail/CVE-2010-4351
generic_textual MODERATE http://www.mandriva.com/security/advisories?name=MDVSA-2011:054
Reference id Reference type URL
http://blog.fuseyism.com/index.php/2011/01/18/security-icedtea6-177-184-194-released/
http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053276.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053288.html
http://osvdb.org/70605
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-4351.json
https://api.first.org/data/v1/epss?cve=CVE-2010-4351
https://bugzilla.redhat.com/show_bug.cgi?id=663680
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4351
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4448
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4450
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4465
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4469
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4470
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4471
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4472
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0025
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0706
http://secunia.com/advisories/43002
http://secunia.com/advisories/43078
http://secunia.com/advisories/43085
http://secunia.com/advisories/43135
http://security.gentoo.org/glsa/glsa-201406-32.xml
https://exchange.xforce.ibmcloud.com/vulnerabilities/64893
http://www.debian.org/security/2011/dsa-2224
http://www.mandriva.com/security/advisories?name=MDVSA-2011:054
http://www.redhat.com/support/errata/RHSA-2011-0176.html
http://www.securityfocus.com/bid/45894
http://www.ubuntu.com/usn/USN-1052-1
http://www.ubuntu.com/usn/USN-1055-1
http://www.vupen.com/english/advisories/2011/0165
http://www.vupen.com/english/advisories/2011/0166
http://www.vupen.com/english/advisories/2011/0215
http://www.vupen.com/english/advisories/2011/0239
http://www.zerodayinitiative.com/advisories/ZDI-11-014/
CVE-2010-4351 https://nvd.nist.gov/vuln/detail/CVE-2010-4351
GLSA-201406-32 https://security.gentoo.org/glsa/201406-32
RHSA-2011:0176 https://access.redhat.com/errata/RHSA-2011:0176
USN-1052-1 https://usn.ubuntu.com/1052-1/
USN-1055-1 https://usn.ubuntu.com/1055-1/
No exploits are available.
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P Found at https://nvd.nist.gov/vuln/detail/CVE-2010-4351
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Exploit Prediction Scoring System (EPSS)
Percentile 0.83051
EPSS Score 0.00959
Published At Dec. 17, 2024, midnight
Date Actor Action Source VulnerableCode Version
There are no relevant records.