CVE-2012-5076

Published: Oct 16, 2012Modified: Apr 21, 2026CISA KEV

9.8

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)

Description

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier allows remote attackers to affect confidentiality, integrity, and availability, related to JAX-WS.

Affected (9)

Products: Oracle: Jre · Suse: Linux Enterprise Desktop

1 product

1 product

Linux Enterprise Desktop

Configuration A

8 vulnerable

Vulnerable Software	Affected Versions
Oracle Jre	Version 1.7.0
Oracle Jre	Version 1.7.0 update1
Oracle Jre	Version 1.7.0 update2
Oracle Jre	Version 1.7.0 update3
Oracle Jre	Version 1.7.0 update4
Oracle Jre	Version 1.7.0 update5
Oracle Jre	Version 1.7.0 update6
Oracle Jre	Version 1.7.0 update7

Configuration B

1 vulnerable

Vulnerable Software	Affected Versions
Suse Linux Enterprise Desktop	Version 11 sp2

Related CWEs

Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

References (21)

http://lists.opensuse.org/opensuse-security-announce/2012-10/msg00016.html

Source: secalert_us@oracle.com

Mailing ListThird Party Advisory

http://rhn.redhat.com/errata/RHSA-2012-1386.html

Source: secalert_us@oracle.com

Third Party Advisory

http://rhn.redhat.com/errata/RHSA-2012-1391.html

Source: secalert_us@oracle.com

Third Party Advisory

http://rhn.redhat.com/errata/RHSA-2012-1467.html

Source: secalert_us@oracle.com

Third Party Advisory

http://secunia.com/advisories/51029

Source: secalert_us@oracle.com

Not Applicable

http://secunia.com/advisories/51326

Source: secalert_us@oracle.com

Not Applicable

http://secunia.com/advisories/51390

Source: secalert_us@oracle.com

Not Applicable

http://security.gentoo.org/glsa/glsa-201406-32.xml

Source: secalert_us@oracle.com

Third Party Advisory

http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html

Source: secalert_us@oracle.com

PatchVendor Advisory

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16641

Source: secalert_us@oracle.com

Broken Link

http://lists.opensuse.org/opensuse-security-announce/2012-10/msg00016.html

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

http://rhn.redhat.com/errata/RHSA-2012-1386.html

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

http://rhn.redhat.com/errata/RHSA-2012-1391.html

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

http://rhn.redhat.com/errata/RHSA-2012-1467.html

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

http://secunia.com/advisories/51029

Source: af854a3a-2127-422b-91ae-364da2661108

Not Applicable

http://secunia.com/advisories/51326

Source: af854a3a-2127-422b-91ae-364da2661108

Not Applicable

http://secunia.com/advisories/51390

Source: af854a3a-2127-422b-91ae-364da2661108

Not Applicable

http://security.gentoo.org/glsa/glsa-201406-32.xml

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16641

Source: af854a3a-2127-422b-91ae-364da2661108

Broken Link

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2012-5076

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0

US Government Resource

Timeline

No history available yet.