VDB
CISA-2012-1723
CISA-2012-1723
PUBLISHED
CVSS 9.8 CRITICAL
Reported by oracle · Published June 16, 2012
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.2_37 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.
Risk Scores
CVSS 3.1
9.8
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| n/a | n/a | *, n/a |
Timeline
- Jun 16, 2012 CVE Published
- Feb 13, 2025 PoC Published
- Oct 22, 2025 CVE Updated
- Mar 26, 2026 Security Advisory
References
- GLSA-201406-32 vendor-advisoryx_refsource_GENTOO
- RHSA-2012:0734 vendor-advisoryx_refsource_REDHAT
- x_refsource_CONFIRM
- [OpenJDK] 20120612 IcedTea6 1.10.8 & 1.11.3 Released mailing-listx_refsource_MLIST
- SSRT100919 vendor-advisoryx_refsource_HP
- oval:org.mitre.oval:def:16259 vdb-entrysignaturex_refsource_OVAL
- 53960 vdb-entryx_refsource_BID
- MDVSA-2012:095 vendor-advisoryx_refsource_MANDRIVA
- x_refsource_CONFIRM
- 51080 third-party-advisoryx_refsource_SECUNIA
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2012-1723 url