What is the severity of CVE-2018-2972?

The severity of CVE-2018-2972 is medium with a severity value of 5.9.

What is the affected software for CVE-2018-2972?

The affected software for CVE-2018-2972 is Oracle JDK and Oracle JRE version 10.0.1.

How can an attacker exploit CVE-2018-2972?

An unauthenticated attacker with network access via multiple protocols can exploit CVE-2018-2972 to compromise Java SE.

What is the remediation for CVE-2018-2972 in Ubuntu?

The remediation for CVE-2018-2972 in Ubuntu is to update to openjdk-lts version 10.0.2+13-1ubuntu0.18.04.1 or later.

Where can I find more information about CVE-2018-2972?

You can find more information about CVE-2018-2972 in the Oracle Security Advisory and SecurityFocus links provided.

Vulnerability/
CVE-2018-2972

medium

5.9

18/7/2018

21/11/2024

CVE-2018-2972

First published: Wed Jul 18 2018(Updated: )

Last updated 24 July 2024

Credit: secalert_us@oracle.com secalert_us@oracle.com

Affected Software	Affected Version	How to fix
Oracle JDK	=10.0.1
Oracle JRE	=10.0.1
debian/openjdk-10

Remedy

http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2018-2972?
The severity of CVE-2018-2972 is medium with a severity value of 5.9.
What is the affected software for CVE-2018-2972?
The affected software for CVE-2018-2972 is Oracle JDK and Oracle JRE version 10.0.1.
How can an attacker exploit CVE-2018-2972?
An unauthenticated attacker with network access via multiple protocols can exploit CVE-2018-2972 to compromise Java SE.
What is the remediation for CVE-2018-2972 in Ubuntu?
The remediation for CVE-2018-2972 in Ubuntu is to update to openjdk-lts version 10.0.2+13-1ubuntu0.18.04.1 or later.
Where can I find more information about CVE-2018-2972?
You can find more information about CVE-2018-2972 in the Oracle Security Advisory and SecurityFocus links provided.

collector/nvd-index
agent/type
collector/launchpad-cve
source/Launchpad
agent/author
collector/security-tracker-debian
source/Debian
agent/software-canonical-lookup
agent/severity
agent/remedy
collector/usn-cve
source/Ubuntu
agent/references
agent/tags
agent/first-publish-date
agent/softwarecombine
agent/event
agent/description
collector/mitre-cve
source/MITRE
collector/nvd-cve
source/NVD
agent/last-modified-date
agent/trending
vendor/oracle
canonical/oracle jdk
version/oracle jdk/10.0.1
canonical/oracle jre
version/oracle jre/10.0.1
package-manager/debian

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.