Showing 1 - 12 of 12

CVE-2018-2940

Status Candidate

Overview

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 6u191, 7u181, 8u172 and 10.0.1; Java SE Embedded: 8u171. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 4.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N).

Related Files

Red Hat Security Advisory 2018-3008-01: Posted Oct 25, 2018; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2018-3008-01 - Oracle Java SE version 6 includes the Oracle Java Runtime Environment and the Oracle Java Software Development Kit. This update upgrades Oracle Java SE 6 to version 6 Update 211. Issues addressed include a denial of service vulnerability.; tags | advisory, java, denial of service; systems | linux, redhat; advisories | CVE-2018-13785, CVE-2018-2940, CVE-2018-2952, CVE-2018-2973, CVE-2018-3136, CVE-2018-3139, CVE-2018-3149, CVE-2018-3180, CVE-2018-3214; SHA-256 | bc94839eae2c0fb885dcffdcdbb3ac18844d51bb390562a58eb2019851d39498; Download | Favorite | View

Red Hat Security Advisory 2018-3007-01: Posted Oct 25, 2018; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2018-3007-01 - Oracle Java SE version 6 includes the Oracle Java Runtime Environment and the Oracle Java Software Development Kit. This update upgrades Oracle Java SE 6 to version 6 Update 211. Issues addressed include a denial of service vulnerability.; tags | advisory, java, denial of service; systems | linux, redhat; advisories | CVE-2018-13785, CVE-2018-2940, CVE-2018-2952, CVE-2018-2973, CVE-2018-3136, CVE-2018-3139, CVE-2018-3149, CVE-2018-3180, CVE-2018-3214; SHA-256 | d33ed9274586089907ca6e62f732423aa29e755c29fb58b663334ceabcab53a2; Download | Favorite | View

Red Hat Security Advisory 2018-2713-01: Posted Sep 18, 2018; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2018-2713-01 - IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE 8 to version 8 SR5-FP20. Issues addressed include denial of service and traversal vulnerabilities.; tags | advisory, java, denial of service, vulnerability; systems | linux, redhat; advisories | CVE-2016-0705, CVE-2017-3732, CVE-2017-3736, CVE-2018-12539, CVE-2018-1517, CVE-2018-1656, CVE-2018-2940, CVE-2018-2952, CVE-2018-2973; SHA-256 | 16c2056d090785be8a94fc1a5ad4fcf383eef85c7a47bbb4b6f442c4d6911e12; Download | Favorite | View

Red Hat Security Advisory 2018-2712-01: Posted Sep 18, 2018; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2018-2712-01 - IBM Java SE version 7 Release 1 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE 7 to version 7R1 SR4-FP30. Issues addressed include denial of service and traversal vulnerabilities.; tags | advisory, java, denial of service, vulnerability; systems | linux, redhat; advisories | CVE-2018-12539, CVE-2018-1517, CVE-2018-1656, CVE-2018-2940, CVE-2018-2952, CVE-2018-2973; SHA-256 | c8a03a3a1708949badb7bfd4cd2fbbefbe52f94fd0a925b5c38d1b9cccdc80ef; Download | Favorite | View

Red Hat Security Advisory 2018-2576-01: Posted Aug 29, 2018; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2018-2576-01 - IBM Java SE version 7 Release 1 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE 7 to version 7R1 SR4-FP30. Issues addressed include denial of service and traversal vulnerabilities.; tags | advisory, java, denial of service, vulnerability; systems | linux, redhat; advisories | CVE-2018-12539, CVE-2018-1517, CVE-2018-1656, CVE-2018-2940, CVE-2018-2952, CVE-2018-2973; SHA-256 | 4b188d1b15ec7339ac307092c0aa9ab9a2507855f0fc347e6a99f9dfc3bcde8c; Download | Favorite | View

Red Hat Security Advisory 2018-2575-01: Posted Aug 29, 2018; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2018-2575-01 - IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE 8 to version 8 SR5-FP20. Issues addressed include denial of service and traversal vulnerabilities.; tags | advisory, java, denial of service, vulnerability; systems | linux, redhat; advisories | CVE-2016-0705, CVE-2017-3732, CVE-2017-3736, CVE-2018-12539, CVE-2018-1517, CVE-2018-1656, CVE-2018-2940, CVE-2018-2952, CVE-2018-2973; SHA-256 | 23b1e7103f814a2701427f105de8aeeedf3a5b0e15d6ccbb1452af8c7f352335; Download | Favorite | View

Red Hat Security Advisory 2018-2569-01: Posted Aug 28, 2018; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2018-2569-01 - IBM Java SE version 7 Release 1 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE 7 to version 7R1 SR4-FP30. Issues addressed include denial of service and traversal vulnerabilities.; tags | advisory, java, denial of service, vulnerability; systems | linux, redhat; advisories | CVE-2018-12539, CVE-2018-1517, CVE-2018-1656, CVE-2018-2940, CVE-2018-2952, CVE-2018-2973; SHA-256 | 2b9eb923576c2783e71bbd165d8b900ace1dbb212be4907b730fb79db1aec912; Download | Favorite | View

Red Hat Security Advisory 2018-2568-01: Posted Aug 28, 2018; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2018-2568-01 - IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE 8 to version 8 SR5-FP20. Issues addressed include denial of service and traversal vulnerabilities.; tags | advisory, java, denial of service, vulnerability; systems | linux, redhat; advisories | CVE-2016-0705, CVE-2017-3732, CVE-2017-3736, CVE-2018-12539, CVE-2018-1517, CVE-2018-1656, CVE-2018-2940, CVE-2018-2952, CVE-2018-2973; SHA-256 | 81773aa1b0c169ccfc2ecf36d8c9f4c0317742188a742e2b2301bcb4c9f0dc85; Download | Favorite | View

Red Hat Security Advisory 2018-2255-01: Posted Jul 26, 2018; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2018-2255-01 - Oracle Java SE version 7 includes the Oracle Java Runtime Environment and the Oracle Java Software Development Kit. This update upgrades Oracle Java SE 7 to version 7 Update 191. Issues addressed include an insufficient validation vulnerability.; tags | advisory, java; systems | linux, redhat; advisories | CVE-2018-2940, CVE-2018-2941, CVE-2018-2952, CVE-2018-2973; SHA-256 | 7f56d6d295c0b9904a9d164fe4d5c455c5008ad4d1e65d4ab50bb02cf2ac133d; Download | Favorite | View

Red Hat Security Advisory 2018-2256-01: Posted Jul 25, 2018; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2018-2256-01 - Oracle Java SE version 8 includes the Oracle Java Runtime Environment and the Oracle Java Software Development Kit. This update upgrades Oracle Java SE 8 to version 8 Update 181. Issues addressed include an insufficient validation vulnerability.; tags | advisory, java; systems | linux, redhat; advisories | CVE-2018-2940, CVE-2018-2941, CVE-2018-2952, CVE-2018-2964, CVE-2018-2973; SHA-256 | e7a15a262e6f38ab2b37acb8be1d5941abb1bf6e2a3e2b1e6b45bb4e37eaf463; Download | Favorite | View

Red Hat Security Advisory 2018-2254-01: Posted Jul 25, 2018; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2018-2254-01 - Oracle Java SE version 7 includes the Oracle Java Runtime Environment and the Oracle Java Software Development Kit. This update upgrades Oracle Java SE 7 to version 7 Update 191. Issues addressed include an insufficient validation vulnerability.; tags | advisory, java; systems | linux, redhat; advisories | CVE-2018-2940, CVE-2018-2941, CVE-2018-2952, CVE-2018-2973; SHA-256 | 5430b5eaac57be44a3bfd7e0b388429e3298c92f8f683c003f73135b13bb86c2; Download | Favorite | View

Red Hat Security Advisory 2018-2253-01: Posted Jul 25, 2018; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2018-2253-01 - Oracle Java SE version 8 includes the Oracle Java Runtime Environment and the Oracle Java Software Development Kit. This update upgrades Oracle Java SE 8 to version 8 Update 181. Issues addressed include an insufficient validation vulnerability.; tags | advisory, java; systems | linux, redhat; advisories | CVE-2018-2940, CVE-2018-2941, CVE-2018-2952, CVE-2018-2964, CVE-2018-2973; SHA-256 | eb6f174756d76dde08ac873a0c25d4f9a60ce1f37a653a0ae8b45ee689713593; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 228 files
Ubuntu 55 files
Debian 27 files
LiquidWorm 11 files
Valentin Lobstein 11 files
nu11secur1ty 8 files
Google Security Research 6 files
Apple 6 files
Milad Karimi 5 files
Yevhenii Butenko 4 files

File Archives

Systems

AIX (429)
Apple (2,078)
BSD (376)
CentOS (58)
Cisco (1,927)
Debian (7,022)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,467)
HPUX (880)
iOS (373)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (49,333)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (488)
RedHat (15,578)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,460)
UNIX (9,394)
UnixWare (187)
Windows (6,650)
Other

CVE-2018-2940

Overview

Related Files

File Archive:

April 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems