Vulnerability Description
Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JavaFX 2.2.40 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Oracle | Javafx | <= 2.2.40 |
| Oracle | Jdk | 1.5.0 |
| Oracle | Jre | 1.5.0 |
| Redhat | Enterprise Linux Desktop | 5.0 |
| Redhat | Enterprise Linux Eus | 6.4 |
| Redhat | Enterprise Linux Server | 5.0 |
| Redhat | Enterprise Linux Server Aus | 6.4 |
| Redhat | Enterprise Linux Workstation | 5.0 |
References
- http://lists.apple.com/archives/security-announce/2013/Oct/msg00001.htmlBroken LinkMailing List
- http://lists.opensuse.org/opensuse-security-announce/2013-11/msg00013.htmlBroken Link
- http://marc.info/?l=bugtraq&m=138674031212883&w=2Issue TrackingMailing ListThird Party Advisory
- http://marc.info/?l=bugtraq&m=138674073720143&w=2Issue TrackingMailing ListThird Party Advisory
- http://rhn.redhat.com/errata/RHSA-2013-1440.htmlThird Party Advisory
- http://rhn.redhat.com/errata/RHSA-2013-1507.htmlThird Party Advisory
- http://rhn.redhat.com/errata/RHSA-2013-1508.htmlThird Party Advisory
- http://rhn.redhat.com/errata/RHSA-2013-1509.htmlThird Party Advisory
- http://rhn.redhat.com/errata/RHSA-2013-1793.htmlBroken Link
- http://secunia.com/advisories/56338Not Applicable
- http://support.apple.com/kb/HT5982Third Party Advisory
- http://www-01.ibm.com/support/docview.wss?uid=swg21655201Third Party Advisory
- http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS13-025/indeThird Party Advisory
- http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.htmlVendor Advisory
- http://www.securityfocus.com/bid/63151Third Party AdvisoryVDB Entry
FAQ
What is CVE-2013-5843?
CVE-2013-5843 is a vulnerability with a CVSS score of 10.0 (HIGH). Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JavaFX 2.2.40 and earlier, and Java SE Embedded 7u40 and earlier allows remote attac...
How severe is CVE-2013-5843?
CVE-2013-5843 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2013-5843?
Check the references section above for vendor advisories and patch information. Affected products include: Oracle Javafx, Oracle Jdk, Oracle Jre, Redhat Enterprise Linux Desktop, Redhat Enterprise Linux Eus.