QwikSec

Security Database

CVE

CWE

Training

CVE-2013-2436

Published: Apr 17, 2013

Modified: Aug 6, 2024

PUBLISHED

Description

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-1488 and CVE-2013-2426. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect "type checks" and "method handle binding" involving Wrapper.convert.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

vendor-advisory

x_refsource_GENTOO

third-party-advisory

x_refsource_CERT

https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0130

x_refsource_CONFIRM

vendor-advisory

x_refsource_REDHAT

http://hg.openjdk.java.net/jdk7u/jdk7u-dev/jdk/rev/20f287fec09f

x_refsource_MISC

vendor-advisory

x_refsource_MANDRIVA

http://www-01.ibm.com/support/docview.wss?uid=swg21644197

x_refsource_CONFIRM

openSUSE-SU-2013:0964

vendor-advisory

x_refsource_SUSE

vendor-advisory

x_refsource_REDHAT

https://bugzilla.redhat.com/show_bug.cgi?id=952550

x_refsource_MISC

vendor-advisory

x_refsource_UBUNTU

oval:org.mitre.oval:def:16540

vdb-entry

signature

x_refsource_OVAL

http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html

x_refsource_CONFIRM

http://blog.fuseyism.com/index.php/2013/04/22/security-icedtea-2-3-9-for-openjdk-7-released/

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

CVE-2013-2436 - Security Vulnerability | QwikSec