Description

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 6 and earlier, and 6 Update 34 and earlier, has no impact and remote attack vectors involving AWT and "a security-in-depth issue that is not directly exploitable but which can be used to aggravate security vulnerabilities that can be directly exploited." NOTE: this identifier was assigned by the Oracle CNA, but CVE is not intended to cover defense-in-depth issues that are only exposed by the presence of other vulnerabilities. NOTE: Oracle has not commented on claims from a downstream vendor that this issue is related to "toolkit internals references."

Remediation

References

CVE-2012-0547

Related Vulnerabilities

Drupal Core 8.7.4 Security Bypass (8.7.4)

WordPress Plugin bbPress Move Topics PHP Object Injection (1.1.4)

Oracle Application Server CVE-2008-0340 Vulnerability (CVE-2008-0340)

MySQL CVE-2019-2529 Vulnerability (CVE-2019-2529)

Apache Tomcat Numeric Errors Vulnerability (CVE-2014-0099)

Severity

Info

Classification

CVE-2012-0547

Tags

Missing Update Known Vulnerabilities