Search for vulnerabilities
Vulnerability details: VCID-xt8e-cdmk-aaac
Vulnerability ID VCID-xt8e-cdmk-aaac
Aliases CVE-2017-10074
Summary Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Hotspot). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, Java SE Embedded, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE, Java SE Embedded. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 8.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H).
Status Published
Exploitability 0.5
Weighted Severity 9.0
Risk 4.5
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-190 Integer Overflow or Wraparound
System Score Found at
generic_textual Medium http://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-10074.html
rhas Critical https://access.redhat.com/errata/RHSA-2017:1789
ssvc Track https://access.redhat.com/errata/RHSA-2017:1789
rhas Critical https://access.redhat.com/errata/RHSA-2017:1790
ssvc Track https://access.redhat.com/errata/RHSA-2017:1790
rhas Critical https://access.redhat.com/errata/RHSA-2017:1791
ssvc Track https://access.redhat.com/errata/RHSA-2017:1791
rhas Critical https://access.redhat.com/errata/RHSA-2017:1792
ssvc Track https://access.redhat.com/errata/RHSA-2017:1792
rhas Critical https://access.redhat.com/errata/RHSA-2017:2424
ssvc Track https://access.redhat.com/errata/RHSA-2017:2424
cvssv3 7.5 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10074.json
epss 0.00228 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.00228 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.00228 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.00228 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.00275 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.00275 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.00275 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.00275 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.00275 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.00275 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.00275 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.00275 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.00275 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.00275 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.00275 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.00275 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.00752 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.00752 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.00752 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.00752 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.00752 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.00752 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.00752 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.00752 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.00752 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.00752 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.00752 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.01041 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.01041 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.01041 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.01041 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.01041 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.01041 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.01041 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.01041 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.01041 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.01041 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.01041 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.01041 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.01041 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.01041 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.01041 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.01041 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.01041 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.01041 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.01041 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.01041 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.01041 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.01041 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.01041 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.01041 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.01041 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.01041 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.01041 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.01041 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.01041 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.01041 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.01041 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.01041 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.01041 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.01041 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.01041 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.01041 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.01041 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.0123 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.0123 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.0123 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.0123 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.0123 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.0123 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.0123 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.0123 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.0123 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.0123 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.0123 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.0123 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.0123 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.0123 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.0123 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.0123 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.0123 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.0123 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.0123 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
epss 0.03495 https://api.first.org/data/v1/epss?cve=CVE-2017-10074
rhbs urgent https://bugzilla.redhat.com/show_bug.cgi?id=1471534
generic_textual Low https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10053
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10067
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10074
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10078
generic_textual Low https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10081
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10087
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10089
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10090
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10096
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10101
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10102
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10107
generic_textual Low https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10108
generic_textual Low https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10109
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10110
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10111
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10115
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10116
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10118
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10135
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10176
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10193
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10198
generic_textual Low https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10243
cvssv2 7.6 https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
cvssv3 8.3 https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
cvssv2 5.1 https://nvd.nist.gov/vuln/detail/CVE-2017-10074
cvssv3 8.3 https://nvd.nist.gov/vuln/detail/CVE-2017-10074
cvssv3.1 8.3 https://nvd.nist.gov/vuln/detail/CVE-2017-10074
generic_textual Low https://ubuntu.com/security/notices/USN-3366-1
generic_textual Low https://ubuntu.com/security/notices/USN-3396-1
generic_textual Low https://usn.ubuntu.com/usn/usn-3366-1
generic_textual Low https://usn.ubuntu.com/usn/usn-3396-1
cvssv3.1 9.8 http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html
generic_textual CRITICAL http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html
generic_textual Low http://www.oracle.com/technetwork/security-advisory/cpujul2017verbose-3236625.html#JAVA
Reference id Reference type URL
http://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-10074.html
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10074.json
https://api.first.org/data/v1/epss?cve=CVE-2017-10074
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10053
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10067
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10074
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10078
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10081
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10087
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10089
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10090
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10096
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10101
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10102
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10107
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10108
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10109
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10110
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10111
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10115
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10116
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10118
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10135
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10176
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10193
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10198
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10243
https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
https://security.gentoo.org/glsa/201709-22
https://security.netapp.com/advisory/ntap-20170720-0001/
https://ubuntu.com/security/notices/USN-3366-1
https://ubuntu.com/security/notices/USN-3396-1
https://usn.ubuntu.com/usn/usn-3366-1
https://usn.ubuntu.com/usn/usn-3396-1
http://www.debian.org/security/2017/dsa-3919
http://www.debian.org/security/2017/dsa-3954
http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html
http://www.oracle.com/technetwork/security-advisory/cpujul2017verbose-3236625.html#JAVA
http://www.securityfocus.com/bid/99731
http://www.securitytracker.com/id/1038931
1471534 https://bugzilla.redhat.com/show_bug.cgi?id=1471534
cpe:2.3:a:netapp:active_iq_unified_manager:*:*:*:*:*:vmware_vsphere:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:active_iq_unified_manager:*:*:*:*:*:vmware_vsphere:*:*
cpe:2.3:a:netapp:active_iq_unified_manager:*:*:*:*:*:windows:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:active_iq_unified_manager:*:*:*:*:*:windows:*:*
cpe:2.3:a:netapp:cloud_backup:-:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:cloud_backup:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:element_software:-:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:element_software:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:e-series_santricity_os_controller:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:e-series_santricity_os_controller:*:*:*:*:*:*:*:*
cpe:2.3:a:netapp:e-series_santricity_storage_manager:-:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:e-series_santricity_storage_manager:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:oncommand_balance:-:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:oncommand_balance:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:oncommand_performance_manager:-:*:*:*:*:vmware_vsphere:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:oncommand_performance_manager:-:*:*:*:*:vmware_vsphere:*:*
cpe:2.3:a:netapp:oncommand_shift:-:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:oncommand_shift:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:oncommand_unified_manager:-:*:*:*:*:7-mode:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:oncommand_unified_manager:-:*:*:*:*:7-mode:*:*
cpe:2.3:a:netapp:oncommand_unified_manager:*:*:*:*:*:vsphere:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:oncommand_unified_manager:*:*:*:*:*:vsphere:*:*
cpe:2.3:a:netapp:oncommand_unified_manager:*:*:*:*:*:windows:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:oncommand_unified_manager:*:*:*:*:*:windows:*:*
cpe:2.3:a:netapp:plug-in_for_symantec_netbackup:-:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:plug-in_for_symantec_netbackup:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:oracle:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:oracle:*:*
cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:sap:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:sap:*:*
cpe:2.3:a:netapp:steelstore_cloud_integrated_storage:-:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:steelstore_cloud_integrated_storage:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:storage_replication_adapter_for_clustered_data_ontap:*:*:*:*:*:windows:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:storage_replication_adapter_for_clustered_data_ontap:*:*:*:*:*:windows:*:*
cpe:2.3:a:netapp:vasa_provider_for_clustered_data_ontap:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:vasa_provider_for_clustered_data_ontap:*:*:*:*:*:*:*:*
cpe:2.3:a:netapp:vasa_provider_for_clustered_data_ontap:6.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:vasa_provider_for_clustered_data_ontap:6.0:*:*:*:*:*:*:*
cpe:2.3:a:netapp:virtual_storage_console:6.0:*:*:*:*:vsphere:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:virtual_storage_console:6.0:*:*:*:*:vsphere:*:*
cpe:2.3:a:netapp:virtual_storage_console:6.2.2:*:*:*:*:vsphere:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:virtual_storage_console:6.2.2:*:*:*:*:vsphere:*:*
cpe:2.3:a:netapp:virtual_storage_console:*:*:*:*:*:vsphere:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:virtual_storage_console:*:*:*:*:*:vsphere:*:*
cpe:2.3:a:oracle:jdk:1.6.0:update151:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jdk:1.6.0:update151:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update141:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jdk:1.7.0:update141:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.8.0:update131:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jdk:1.8.0:update131:*:*:*:*:*:*
cpe:2.3:a:oracle:jre:1.6.0:update151:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jre:1.6.0:update151:*:*:*:*:*:*
cpe:2.3:a:oracle:jre:1.7.0:update141:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jre:1.7.0:update141:*:*:*:*:*:*
cpe:2.3:a:oracle:jre:1.8.0:update131:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jre:1.8.0:update131:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_eus:7.3:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:7.3:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_eus:7.4:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:7.4:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_eus:7.5:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:7.5:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_eus:7.6:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:7.6:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_eus:7.7:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:7.7:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_aus:7.3:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.3:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_aus:7.7:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.7:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_tus:7.3:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.3:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_tus:7.4:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.4:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_tus:7.7:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.7:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
CVE-2017-10074 https://nvd.nist.gov/vuln/detail/CVE-2017-10074
RHSA-2017:1789 https://access.redhat.com/errata/RHSA-2017:1789
RHSA-2017:1790 https://access.redhat.com/errata/RHSA-2017:1790
RHSA-2017:1791 https://access.redhat.com/errata/RHSA-2017:1791
RHSA-2017:1792 https://access.redhat.com/errata/RHSA-2017:1792
RHSA-2017:2424 https://access.redhat.com/errata/RHSA-2017:2424
USN-3366-1 https://usn.ubuntu.com/3366-1/
USN-3396-1 https://usn.ubuntu.com/3396-1/
No exploits are available.
Vector: SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-04T15:39:34Z/ Found at https://access.redhat.com/errata/RHSA-2017:1789
Vector: SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-04T15:39:34Z/ Found at https://access.redhat.com/errata/RHSA-2017:1790
Vector: SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-04T15:39:34Z/ Found at https://access.redhat.com/errata/RHSA-2017:1791
Vector: SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-04T15:39:34Z/ Found at https://access.redhat.com/errata/RHSA-2017:1792
Vector: SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-04T15:39:34Z/ Found at https://access.redhat.com/errata/RHSA-2017:2424
Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H Found at https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10074.json
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: AV:N/AC:H/Au:N/C:C/I:C/A:C Found at https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H Found at https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P Found at https://nvd.nist.gov/vuln/detail/CVE-2017-10074
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H Found at https://nvd.nist.gov/vuln/detail/CVE-2017-10074
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H Found at https://nvd.nist.gov/vuln/detail/CVE-2017-10074
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Found at http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Exploit Prediction Scoring System (EPSS)
Percentile 0.60575
EPSS Score 0.00228
Published At Dec. 17, 2024, midnight
Date Actor Action Source VulnerableCode Version
There are no relevant records.