CVE-2012-1723
CVE-2012-1723
In short
A critical flaw in Oracle Java SE allows remote attackers to compromise computer security through unknown methods in the Hotspot component. This vulnerability affects multiple Java versions and can lead to unauthorized access, data manipulation, or system disruption.
Technical detail
Unspecified remote vulnerability in Oracle Java SE (versions 7u4 and earlier, 6u32 and earlier, 5u35 and earlier, 1.4.2_37 and earlier) within the Hotspot JIT compiler component. Attack vector is network-based with no authentication required; successful exploitation results in complete compromise of confidentiality, integrity, and availability of the affected system.
Summary generated and translated by AI from the official description.
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.2_37 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected products
n/a · n/apublic PoCs found — 2
githubgithub.com/EthanNJC/CVE-2012-1723★ 0exploitdbwww.exploit-db.com/exploits/19717unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://mail.openjdk.java.net/pipermail/distro-pkg-dev/2012-June/019076.htmlhttp://marc.info/?l=bugtraq&m=134496371727681&w=2http://rhn.redhat.com/errata/RHSA-2012-0734.htmlhttp://secunia.com/advisories/51080http://security.gentoo.org/glsa/glsa-201406-32.xmlhttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16259https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2012-1723http://www.ibm.com/support/docview.wss?uid=swg21615246http://www.mandriva.com/security/advisories?name=MDVSA-2012:095http://www.oracle.com/technetwork/topics/security/javacpujun2012-1515912.htmlhttp://www.securityfocus.com/bid/53960