CVE-2013-5895
First published: Wed Jan 15 2014(Updated: )
Unspecified vulnerability in Oracle Java SE 7u45 and JavaFX 2.2.45 allows remote attackers to affect confidentiality via unknown vectors related to JavaFX.
Credit: secalert_us@oracle.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Red Hat Enterprise Linux Desktop | =5.0 | |
| Red Hat Enterprise Linux Desktop | =6.0 | |
| Red Hat Enterprise Linux HPC Node Supplementary | =6.0 | |
| Red Hat Enterprise Linux Server Supplementary | =5.0 | |
| Red Hat Enterprise Linux Server Supplementary | =6.0 | |
| Red Hat Enterprise Linux Server Supplementary AUS | =6.5 | |
| Red Hat Enterprise Linux Server Supplementary EUS | =6.5.z | |
| Red Hat Enterprise Linux Workstation Supplementary | =6.0 | |
| HP JDK | <=7.0.08 | |
| Sun Java Runtime Environment (JRE) | <=7.0.08 | |
| HPE HP-UX | =b.11.23 | |
| HPE HP-UX | =b.11.31 | |
| Oracle Java SE | =1.7.0-update45 | |
| Oracle JavaFX | =2.2.45 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://marc.info/?l=bugtraq&m=139402697611681&w=2
- http://osvdb.org/102022
- http://rhn.redhat.com/errata/RHSA-2014-0030.html
- http://secunia.com/advisories/56484
- http://secunia.com/advisories/56485
- http://secunia.com/advisories/56535
- http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html
- http://www.securityfocus.com/bid/64758
- http://www.securityfocus.com/bid/64906
- http://www.securitytracker.com/id/1029608
- https://exchange.xforce.ibmcloud.com/vulnerabilities/90353
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04166777
Frequently Asked Questions
What is the severity of CVE-2013-5895?
The severity of CVE-2013-5895 is not explicitly stated, but it allows remote attackers to affect confidentiality.
How do I fix CVE-2013-5895?
To fix CVE-2013-5895, users should update to a newer version of Oracle Java SE and JavaFX that addresses this vulnerability.
Which software is affected by CVE-2013-5895?
CVE-2013-5895 affects Oracle Java SE 7u45 and JavaFX 2.2.45, along with specific versions of Red Hat Enterprise Linux and HP JDK.
Can CVE-2013-5895 be exploited remotely?
Yes, CVE-2013-5895 can be exploited remotely, allowing attackers to potentially compromise confidentiality.
Is there a workaround for CVE-2013-5895?
The most effective workaround for CVE-2013-5895 is to apply the recommended updates to the affected software.
- agent/references
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/severity
- agent/last-modified-date
- agent/description
- agent/event
- agent/first-publish-date
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/redhat
- canonical/red hat enterprise linux desktop
- version/red hat enterprise linux desktop/5.0
- version/red hat enterprise linux desktop/6.0
- canonical/red hat enterprise linux hpc node supplementary
- version/red hat enterprise linux hpc node supplementary/6.0
- canonical/red hat enterprise linux server supplementary
- version/red hat enterprise linux server supplementary/5.0
- version/red hat enterprise linux server supplementary/6.0
- canonical/red hat enterprise linux server supplementary aus
- version/red hat enterprise linux server supplementary aus/6.5
- canonical/red hat enterprise linux server supplementary eus
- version/red hat enterprise linux server supplementary eus/6.5.z
- canonical/red hat enterprise linux workstation supplementary
- version/red hat enterprise linux workstation supplementary/6.0
- vendor/hp
- canonical/hp jdk
- version/hp jdk/7.0.08
- canonical/sun java runtime environment (jre)
- version/sun java runtime environment (jre)/7.0.08
- canonical/hpe hp-ux
- version/hpe hp-ux/b.11.23
- version/hpe hp-ux/b.11.31
- vendor/oracle
- canonical/oracle java se
- version/oracle java se/1.7.0-update45
- canonical/oracle javafx
- version/oracle javafx/2.2.45