CVE-2013-2424

5.0

MEDIUM

Oracle Java SE JMX Remote Confidentiality Vulnerability

Description

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality via vectors related to JMX. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to "insufficient class access checks" when "creating new instances" using MBeanInstantiator.

INFO

Published Date :

April 17, 2013, 6:55 p.m.

Last Modified :

May 13, 2022, 2:53 p.m.

Source :

[email protected]

Remotely Exploitable :

Yes !

Impact Score :

2.9

Exploitability Score :

10.0

Affected Products

The following products are affected by CVE-2013-2424 vulnerability. Even if cvefeed.io is aware of the exact versions of the products that are affected, the information is not represented in the table below.

ID	Vendor	Product
1	Oracle	jdk
2	Oracle	jre
1	Sun	jre
2	Sun	jdk

: Total Affected Vendor : 2 | Products : 4

References to Advisories, Solutions, and Tools

Here, you will find a curated list of external links that provide in-depth information, practical solutions, and valuable tools related to CVE-2013-2424.

URL	Resource
http://blog.fuseyism.com/index.php/2013/04/22/security-icedtea-2-3-9-for-openjdk-7-released/
http://blog.fuseyism.com/index.php/2013/04/25/security-icedtea-1-11-11-1-12-5-for-openjdk-6-released/
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03898880
http://hg.openjdk.java.net/jdk7u/jdk7u-dev/jdk/rev/da1867780fc9
http://lists.apple.com/archives/security-announce/2013/Apr/msg00001.html
http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00007.html
http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00013.html
http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00001.html
http://lists.opensuse.org/opensuse-updates/2013-05/msg00017.html
http://lists.opensuse.org/opensuse-updates/2013-06/msg00099.html
http://mail.openjdk.java.net/pipermail/distro-pkg-dev/2013-April/022796.html
http://marc.info/?l=bugtraq&m=137283787217316&w=2
http://rhn.redhat.com/errata/RHSA-2013-0752.html
http://rhn.redhat.com/errata/RHSA-2013-0757.html
http://rhn.redhat.com/errata/RHSA-2013-0758.html
http://rhn.redhat.com/errata/RHSA-2013-1455.html
http://rhn.redhat.com/errata/RHSA-2013-1456.html
http://security.gentoo.org/glsa/glsa-201406-32.xml
http://www.mandriva.com/security/advisories?name=MDVSA-2013:145
http://www.mandriva.com/security/advisories?name=MDVSA-2013:161
http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html	Vendor Advisory
http://www.securityfocus.com/bid/59159
http://www.ubuntu.com/usn/USN-1806-1
http://www.us-cert.gov/ncas/alerts/TA13-107A	US Government Resource
https://bugzilla.redhat.com/show_bug.cgi?id=952509
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16314
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19594
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19656
https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0124
https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0130

We scan GitHub repositories to detect new proof-of-concept exploits. Following list is a collection of public exploits and proof-of-concepts, which have been published on GitHub (sorted by the most recently updated).

Results are limited to the first 15 repositories due to potential performance issues.

The following list is the news that have been mention CVE-2013-2424 vulnerability anywhere in the article.

The following table lists the changes that have been made to the CVE-2013-2424 vulnerability over time.

Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability's severity, exploitability, or other characteristics.

CVE Modified by [email protected]

May. 14, 2024

Action	Type	Old Value	New Value

CPE Deprecation Remap by [email protected]

May. 13, 2022

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:a:oracle:jre:1.6.0:update_25::::::*	OR cpe:2.3:a:oracle:jre:1.6.0:update25::::::*

CPE Deprecation Remap by [email protected]

May. 13, 2022

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:a:oracle:jre:1.6.0:update_33::::::*	OR cpe:2.3:a:oracle:jre:1.6.0:update33::::::*

CPE Deprecation Remap by [email protected]

May. 13, 2022

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:a:oracle:jre:1.6.0:update_27::::::*	OR cpe:2.3:a:oracle:jre:1.6.0:update27::::::*

CPE Deprecation Remap by [email protected]

May. 13, 2022

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:a:oracle:jre:1.6.0:update_24::::::*	OR cpe:2.3:a:oracle:jre:1.6.0:update24::::::*

CPE Deprecation Remap by [email protected]

May. 13, 2022

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:a:oracle:jre:1.6.0:update_30::::::*	OR cpe:2.3:a:oracle:jre:1.6.0:update30::::::*

CPE Deprecation Remap by [email protected]

May. 13, 2022

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:a:oracle:jre:1.6.0:update_41::::::*	OR cpe:2.3:a:oracle:jre:1.6.0:update41::::::*

CPE Deprecation Remap by [email protected]

May. 13, 2022

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:a:oracle:jre::update_43:::::: versions from (including) 1.6.0	OR cpe:2.3:a:oracle:jre::update43:::::: versions from (including) 1.6.0

CPE Deprecation Remap by [email protected]

May. 13, 2022

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:a:oracle:jre:1.6.0:update_23::::::*	OR cpe:2.3:a:oracle:jre:1.6.0:update23::::::*

CPE Deprecation Remap by [email protected]

May. 13, 2022

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:a:oracle:jre:1.6.0:update_39::::::*	OR cpe:2.3:a:oracle:jre:1.6.0:update39::::::*

CPE Deprecation Remap by [email protected]

May. 13, 2022

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:a:oracle:jre:1.6.0:update_32::::::*	OR cpe:2.3:a:oracle:jre:1.6.0:update32::::::*

CPE Deprecation Remap by [email protected]

May. 13, 2022

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:a:oracle:jre:1.6.0:update_22::::::*	OR cpe:2.3:a:oracle:jre:1.6.0:update22::::::*

CPE Deprecation Remap by [email protected]

May. 13, 2022

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:a:oracle:jre:1.6.0:update_38::::::*	OR cpe:2.3:a:oracle:jre:1.6.0:update38::::::*

CPE Deprecation Remap by [email protected]

May. 13, 2022

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:a:oracle:jre:1.6.0:update_35::::::*	OR cpe:2.3:a:oracle:jre:1.6.0:update35::::::*

CPE Deprecation Remap by [email protected]

May. 13, 2022

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:a:oracle:jre:1.6.0:update_37::::::*	OR cpe:2.3:a:oracle:jre:1.6.0:update37::::::*

CPE Deprecation Remap by [email protected]

May. 13, 2022

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:a:oracle:jre:1.6.0:update_26::::::*	OR cpe:2.3:a:oracle:jre:1.6.0:update26::::::*

CPE Deprecation Remap by [email protected]

May. 13, 2022

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:a:oracle:jre:1.6.0:update_34::::::*	OR cpe:2.3:a:oracle:jre:1.6.0:update34::::::*

CPE Deprecation Remap by [email protected]

May. 13, 2022

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:a:oracle:jre:1.6.0:update_29::::::*	OR cpe:2.3:a:oracle:jre:1.6.0:update29::::::*

CPE Deprecation Remap by [email protected]

May. 13, 2022

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:a:oracle:jre:1.6.0:update_31::::::*	OR cpe:2.3:a:oracle:jre:1.6.0:update31::::::*

CPE Deprecation Remap by [email protected]

May. 13, 2022

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:a:oracle:jre:1.5.0:update_38::::::*	OR cpe:2.3:a:oracle:jre:1.5.0:update38::::::*

CPE Deprecation Remap by [email protected]

May. 13, 2022

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:a:oracle:jre:1.5.0:update_40::::::*	OR cpe:2.3:a:oracle:jre:1.5.0:update40::::::*

CPE Deprecation Remap by [email protected]

May. 13, 2022

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:a:oracle:jre:1.5.0:update_36::::::*	OR cpe:2.3:a:oracle:jre:1.5.0:update36::::::*

CPE Deprecation Remap by [email protected]

May. 13, 2022

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:a:oracle:jre::update_41:::::: versions from (including) 1.5.0	OR cpe:2.3:a:oracle:jre::update41:::::: versions from (including) 1.5.0

CPE Deprecation Remap by [email protected]

May. 13, 2022

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:a:oracle:jdk:1.6.0:update_35::::::*	OR cpe:2.3:a:oracle:jdk:1.6.0:update35::::::*

CPE Deprecation Remap by [email protected]

May. 13, 2022

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:a:oracle:jdk::update_43:::::: versions from (including) 1.6.0	OR cpe:2.3:a:oracle:jdk::update43:::::: versions from (including) 1.6.0

CPE Deprecation Remap by [email protected]

May. 13, 2022

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:a:oracle:jdk:1.6.0:update_39::::::*	OR cpe:2.3:a:oracle:jdk:1.6.0:update39::::::*

CPE Deprecation Remap by [email protected]

May. 13, 2022

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:a:oracle:jdk:1.6.0:update_38::::::*	OR cpe:2.3:a:oracle:jdk:1.6.0:update38::::::*

CPE Deprecation Remap by [email protected]

May. 13, 2022

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:a:oracle:jdk:1.6.0:update_37::::::*	OR cpe:2.3:a:oracle:jdk:1.6.0:update37::::::*

CPE Deprecation Remap by [email protected]

May. 13, 2022

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:a:oracle:jdk:1.6.0:update_41::::::*	OR cpe:2.3:a:oracle:jdk:1.6.0:update41::::::*

CPE Deprecation Remap by [email protected]

May. 13, 2022

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:a:oracle:jdk:1.6.0:update_25::::::*	OR cpe:2.3:a:oracle:jdk:1.6.0:update25::::::*

CPE Deprecation Remap by [email protected]

May. 13, 2022

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:a:oracle:jdk:1.6.0:update_31::::::*	OR cpe:2.3:a:oracle:jdk:1.6.0:update31::::::*

CPE Deprecation Remap by [email protected]

May. 13, 2022

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:a:oracle:jdk:1.6.0:update_29::::::*	OR cpe:2.3:a:oracle:jdk:1.6.0:update29::::::*

CPE Deprecation Remap by [email protected]

May. 13, 2022

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:a:oracle:jdk:1.6.0:update_24::::::*	OR cpe:2.3:a:oracle:jdk:1.6.0:update24::::::*

CPE Deprecation Remap by [email protected]

May. 13, 2022

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:a:oracle:jdk:1.6.0:update_23::::::*	OR cpe:2.3:a:oracle:jdk:1.6.0:update23::::::*

CPE Deprecation Remap by [email protected]

May. 13, 2022

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:a:oracle:jdk:1.6.0:update_34::::::*	OR cpe:2.3:a:oracle:jdk:1.6.0:update34::::::*

CPE Deprecation Remap by [email protected]

May. 13, 2022

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:a:oracle:jdk:1.6.0:update_22::::::*	OR cpe:2.3:a:oracle:jdk:1.6.0:update22::::::*

CPE Deprecation Remap by [email protected]

May. 13, 2022

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:a:oracle:jdk:1.6.0:update_33::::::*	OR cpe:2.3:a:oracle:jdk:1.6.0:update33::::::*

CPE Deprecation Remap by [email protected]

May. 13, 2022

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:a:oracle:jdk:1.6.0:update_32::::::*	OR cpe:2.3:a:oracle:jdk:1.6.0:update32::::::*

CPE Deprecation Remap by [email protected]

May. 13, 2022

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:a:oracle:jdk:1.6.0:update_26::::::*	OR cpe:2.3:a:oracle:jdk:1.6.0:update26::::::*

CPE Deprecation Remap by [email protected]

May. 13, 2022

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:a:oracle:jdk:1.6.0:update_30::::::*	OR cpe:2.3:a:oracle:jdk:1.6.0:update30::::::*

CPE Deprecation Remap by [email protected]

May. 13, 2022

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:a:oracle:jdk:1.6.0:update_27::::::*	OR cpe:2.3:a:oracle:jdk:1.6.0:update27::::::*

CPE Deprecation Remap by [email protected]

May. 13, 2022

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:a:oracle:jdk:1.5.0:update_40::::::*	OR cpe:2.3:a:oracle:jdk:1.5.0:update40::::::*

CPE Deprecation Remap by [email protected]

May. 13, 2022

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:a:oracle:jdk::update_41:::::: versions from (including) 1.5.0	OR cpe:2.3:a:oracle:jdk::update41:::::: versions from (including) 1.5.0

CPE Deprecation Remap by [email protected]

May. 13, 2022

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:a:oracle:jdk:1.5.0:update_38::::::*	OR cpe:2.3:a:oracle:jdk:1.5.0:update38::::::*

CPE Deprecation Remap by [email protected]

May. 13, 2022

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:a:oracle:jdk:1.5.0:update_36::::::*	OR cpe:2.3:a:oracle:jdk:1.5.0:update36::::::*

CVE Modified by [email protected]

Sep. 19, 2017

Action	Type	Old Value	New Value
Removed	Reference	http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:19656 [No Types Assigned]
Removed	Reference	http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:16314 [No Types Assigned]
Removed	Reference	http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:19594 [No Types Assigned]
Added	Reference		https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19656 [No Types Assigned]
Added	Reference		https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19594 [No Types Assigned]
Added	Reference		https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16314 [No Types Assigned]

CVE Translated by [email protected]

Apr. 05, 2016

Action	Type	Old Value	New Value
Removed	Translation	Vulnerabilidad no especificada en el entorno de ejecución de Java (JRE) en el componente Oracle Java SE 7 Update 17 y anteriores, 6 Update 43 y anteriores, y 5.0 Update 41 y anteriores permite a atacantes remotos afectar la confidencialidad a través de vectores relacionados con JMX.
Added	Translation		Vulnerabilidad no especificada en el componente Java Runtime Environment (JRE) en Oracle Java SE 7 Update 17 y versiones anteriores, 6 Update 43 y versiones anteriores y 5.0 Update 41 y versiones anteriores y OpenJDK 6 y 7 permite a atacantes remotos afectar la confidencialidad a través de vectores relacionados con JMX. NOTA: la información anterior es de la CPU de Abril del 2013. Oracle no ha hecho comentarios sobre reclamaciones de otro proveedor sobre la relación de este problema con "controles de acceso a clase insuficientes" cuando "se crean nuevas instancias" utilizando MBeanInstantiator.

Modified Analysis by [email protected]

Apr. 04, 2016

Action	Type	Old Value	New Value
Changed	CPE Configuration	Configuration 1 OR cpe:2.3:a:oracle:jre:1.7.0::::::: cpe:2.3:a:oracle:jre:1.7.0:update1::::::* cpe:2.3:a:oracle:jre:1.7.0:update2::::::* cpe:2.3:a:oracle:jre:1.7.0:update3::::::* cpe:2.3:a:oracle:jre:1.7.0:update4::::::* cpe:2.3:a:oracle:jre:1.7.0:update5::::::* cpe:2.3:a:oracle:jre:1.7.0:update6::::::* cpe:2.3:a:oracle:jre:1.7.0:update7::::::* cpe:2.3:a:oracle:jre:1.7.0:update9::::::* cpe:2.3:a:oracle:jre:1.7.0:update10::::::* cpe:2.3:a:oracle:jre:1.7.0:update11::::::* cpe:2.3:a:oracle:jre:1.7.0:update13::::::* cpe:2.3:a:oracle:jre:1.7.0:update15::::::* cpe:2.3:a:oracle:jre:1.7.0:update17::::::* (and previous) Configuration 2 OR cpe:2.3:a:oracle:jdk:1.7.0::::::: cpe:2.3:a:oracle:jdk:1.7.0:update1::::::* cpe:2.3:a:oracle:jdk:1.7.0:update2::::::* cpe:2.3:a:oracle:jdk:1.7.0:update3::::::* cpe:2.3:a:oracle:jdk:1.7.0:update4::::::* cpe:2.3:a:oracle:jdk:1.7.0:update5::::::* cpe:2.3:a:oracle:jdk:1.7.0:update6::::::* cpe:2.3:a:oracle:jdk:1.7.0:update7::::::* cpe:2.3:a:oracle:jdk:1.7.0:update9::::::* cpe:2.3:a:oracle:jdk:1.7.0:update10::::::* cpe:2.3:a:oracle:jdk:1.7.0:update11::::::* cpe:2.3:a:oracle:jdk:1.7.0:update13::::::* cpe:2.3:a:oracle:jdk:1.7.0:update15::::::* cpe:2.3:a:oracle:jdk:1.7.0:update17::::::* (and previous) Configuration 3 OR cpe:2.3:a:oracle:jre:1.6.0:update_38::::::* cpe:2.3:a:oracle:jre:1.6.0:update_37::::::* cpe:2.3:a:oracle:jre:1.6.0:update_35::::::* cpe:2.3:a:oracle:jre:1.6.0:update_34::::::* cpe:2.3:a:oracle:jre:1.6.0:update_33::::::* cpe:2.3:a:oracle:jre:1.6.0:update_32::::::* cpe:2.3:a:oracle:jre:1.6.0:update_31::::::* cpe:2.3:a:oracle:jre:1.6.0:update_30::::::* cpe:2.3:a:oracle:jre:1.6.0:update_29::::::* cpe:2.3:a:oracle:jre:1.6.0:update_27::::::* cpe:2.3:a:oracle:jre:1.6.0:update_26::::::* cpe:2.3:a:oracle:jre:1.6.0:update_25::::::* cpe:2.3:a:oracle:jre:1.6.0:update_24::::::* cpe:2.3:a:oracle:jre:1.6.0:update_23::::::* cpe:2.3:a:oracle:jre:1.6.0:update_22::::::* cpe:2.3:a:sun:jre:1.6.0:update_21::::::* cpe:2.3:a:sun:jre:1.6.0:update_20::::::* cpe:2.3:a:sun:jre:1.6.0:update_19::::::* cpe:2.3:a:sun:jre:1.6.0:update_18::::::* cpe:2.3:a:sun:jre:1.6.0:update_17::::::* cpe:2.3:a:sun:jre:1.6.0:update_16::::::* cpe:2.3:a:sun:jre:1.6.0:update_15::::::* cpe:2.3:a:sun:jre:1.6.0:update_14::::::* cpe:2.3:a:sun:jre:1.6.0:update_13::::::* cpe:2.3:a:sun:jre:1.6.0:update_12::::::* cpe:2.3:a:sun:jre:1.6.0:update_11::::::* cpe:2.3:a:sun:jre:1.6.0:update_10::::::* cpe:2.3:a:sun:jre:1.6.0:update_9::::::* cpe:2.3:a:sun:jre:1.6.0:update_7::::::* cpe:2.3:a:sun:jre:1.6.0:update_6::::::* cpe:2.3:a:sun:jre:1.6.0:update_5::::::* cpe:2.3:a:sun:jre:1.6.0:update_4::::::* cpe:2.3:a:sun:jre:1.6.0:update_3::::::* cpe:2.3:a:sun:jre:1.6.0:update_2::::::* cpe:2.3:a:sun:jre:1.6.0:update_1::::::* cpe:2.3:a:sun:jre:1.6.0::::::: cpe:2.3:a:oracle:jre:1.6.0:update_39::::::* cpe:2.3:a:oracle:jre:1.6.0:update_41::::::* cpe:2.3:a:oracle:jre:1.6.0:update_43::::::* (and previous) Configuration 4 OR cpe:2.3:a:oracle:jdk:1.6.0:update_38::::::* cpe:2.3:a:oracle:jdk:1.6.0:update_37::::::* cpe:2.3:a:oracle:jdk:1.6.0:update_35::::::* cpe:2.3:a:oracle:jdk:1.6.0:update_34::::::* cpe:2.3:a:oracle:jdk:1.6.0:update_33::::::* cpe:2.3:a:oracle:jdk:1.6.0:update_32::::::* cpe:2.3:a:oracle:jdk:1.6.0:update_31::::::* cpe:2.3:a:oracle:jdk:1.6.0:update_30::::::* cpe:2.3:a:oracle:jdk:1.6.0:update_29::::::* cpe:2.3:a:oracle:jdk:1.6.0:update_27::::::* cpe:2.3:a:oracle:jdk:1.6.0:update_26::::::* cpe:2.3:a:oracle:jdk:1.6.0:update_25::::::* cpe:2.3:a:oracle:jdk:1.6.0:update_24::::::* cpe:2.3:a:oracle:jdk:1.6.0:update_23::::::* cpe:2.3:a:oracle:jdk:1.6.0:update_22::::::* cpe:2.3:a:sun:jdk:1.6.0:update_21::::::* cpe:2.3:a:sun:jdk:1.6.0:update_20::::::* cpe:2.3:a:sun:jdk:1.6.0:update_19::::::* cpe:2.3:a:sun:jdk:1.6.0:update_18::::::* cpe:2.3:a:sun:jdk:1.6.0:update_17::::::* cpe:2.3:a:sun:jdk:1.6.0:update_16::::::* cpe:2.3:a:sun:jdk:1.6.0:update_15::::::* cpe:2.3:a:sun:jdk:1.6.0:update_14::::::* cpe:2.3:a:sun:jdk:1.6.0:update_13::::::* cpe:2.3:a:sun:jdk:1.6.0:update_12::::::* cpe:2.3:a:sun:jdk:1.6.0:update_11::::::* cpe:2.3:a:sun:jdk:1.6.0:update_10::::::* cpe:2.3:a:sun:jdk:1.6.0:update_7::::::* cpe:2.3:a:sun:jdk:1.6.0:update_6::::::* cpe:2.3:a:sun:jdk:1.6.0:update_5::::::* cpe:2.3:a:sun:jdk:1.6.0:update_4::::::* cpe:2.3:a:sun:jdk:1.6.0:update_3::::::* cpe:2.3:a:sun:jdk:1.6.0:update2::::::* cpe:2.3:a:sun:jdk:1.6.0:update1_b06::::::* cpe:2.3:a:sun:jdk:1.6.0:update1::::::* cpe:2.3:a:sun:jdk:1.6.0::::::: cpe:2.3:a:oracle:jdk:1.6.0:update_39::::::* cpe:2.3:a:oracle:jdk:1.6.0:update_41::::::* cpe:2.3:a:oracle:jdk:1.6.0:update_43::::::* (and previous) Configuration 5 OR cpe:2.3:a:oracle:jre:1.5.0:update_38::::::* cpe:2.3:a:oracle:jre:1.5.0:update_36::::::* cpe:2.3:a:sun:jre:1.5.0:update33::::::* cpe:2.3:a:sun:jre:1.5.0:update31::::::* cpe:2.3:a:sun:jre:1.5.0:update29::::::* cpe:2.3:a:sun:jre:1.5.0:update28::::::* cpe:2.3:a:sun:jre:1.5.0:update27::::::* cpe:2.3:a:sun:jre:1.5.0:update26::::::* cpe:2.3:a:sun:jre:1.5.0:update25::::::* cpe:2.3:a:sun:jre:1.5.0:update24::::::* cpe:2.3:a:sun:jre:1.5.0:update23::::::* cpe:2.3:a:sun:jre:1.5.0:update22::::::* cpe:2.3:a:sun:jre:1.5.0:update21::::::* cpe:2.3:a:sun:jre:1.5.0:update20::::::* cpe:2.3:a:sun:jre:1.5.0:update19::::::* cpe:2.3:a:sun:jre:1.5.0:update18::::::* cpe:2.3:a:sun:jre:1.5.0:update17::::::* cpe:2.3:a:sun:jre:1.5.0:update16::::::* cpe:2.3:a:sun:jre:1.5.0:update15::::::* cpe:2.3:a:sun:jre:1.5.0:update14::::::* cpe:2.3:a:sun:jre:1.5.0:update13::::::* cpe:2.3:a:sun:jre:1.5.0:update12::::::* cpe:2.3:a:sun:jre:1.5.0:update11::::::* cpe:2.3:a:sun:jre:1.5.0:update10::::::* cpe:2.3:a:sun:jre:1.5.0:update9::::::* cpe:2.3:a:sun:jre:1.5.0:update8::::::* cpe:2.3:a:sun:jre:1.5.0:update7::::::* cpe:2.3:a:sun:jre:1.5.0:update6::::::* cpe:2.3:a:sun:jre:1.5.0:update5::::::* cpe:2.3:a:sun:jre:1.5.0:update4::::::* cpe:2.3:a:sun:jre:1.5.0:update3::::::* cpe:2.3:a:sun:jre:1.5.0:update2::::::* cpe:2.3:a:sun:jre:1.5.0:update1::::::* cpe:2.3:a:sun:jre:1.5.0::::::: cpe:2.3:a:oracle:jre:1.5.0:update_40::::::* cpe:2.3:a:oracle:jre:1.5.0:update_41::::::* (and previous) Configuration 6 OR cpe:2.3:a:oracle:jdk:1.5.0:update_38::::::* cpe:2.3:a:oracle:jdk:1.5.0:update_36::::::* cpe:2.3:a:sun:jdk:1.5.0:update33::::::* cpe:2.3:a:sun:jdk:1.5.0:update31::::::* cpe:2.3:a:sun:jdk:1.5.0:update29::::::* cpe:2.3:a:sun:jdk:1.5.0:update28::::::* cpe:2.3:a:sun:jdk:1.5.0:update27::::::* cpe:2.3:a:sun:jdk:1.5.0:update26::::::* cpe:2.3:a:sun:jdk:1.5.0:update25::::::* cpe:2.3:a:sun:jdk:1.5.0:update24::::::* cpe:2.3:a:sun:jdk:1.5.0:update23::::::* cpe:2.3:a:sun:jdk:1.5.0:update22::::::* cpe:2.3:a:sun:jdk:1.5.0:update21::::::* cpe:2.3:a:sun:jdk:1.5.0:update20::::::* cpe:2.3:a:sun:jdk:1.5.0:update19::::::* cpe:2.3:a:sun:jdk:1.5.0:update18::::::* cpe:2.3:a:sun:jdk:1.5.0:update17::::::* cpe:2.3:a:sun:jdk:1.5.0:update16::::::* cpe:2.3:a:sun:jdk:1.5.0:update15::::::* cpe:2.3:a:sun:jdk:1.5.0:update14::::::* cpe:2.3:a:sun:jdk:1.5.0:update13::::::* cpe:2.3:a:sun:jdk:1.5.0:update12::::::* cpe:2.3:a:sun:jdk:1.5.0:update11_b03::::::* cpe:2.3:a:sun:jdk:1.5.0:update11::::::* cpe:2.3:a:sun:jdk:1.5.0:update10::::::* cpe:2.3:a:sun:jdk:1.5.0:update9::::::* cpe:2.3:a:sun:jdk:1.5.0:update8::::::* cpe:2.3:a:sun:jdk:1.5.0:update7_b03::::::* cpe:2.3:a:sun:jdk:1.5.0:update7::::::* cpe:2.3:a:sun:jdk:1.5.0:update6::::::* cpe:2.3:a:sun:jdk:1.5.0:update5::::::* cpe:2.3:a:sun:jdk:1.5.0:update4::::::* cpe:2.3:a:sun:jdk:1.5.0:update3::::::* cpe:2.3:a:sun:jdk:1.5.0:update2::::::* cpe:2.3:a:sun:jdk:1.5.0:update1::::::* cpe:2.3:a:sun:jdk:1.5.0::::::: cpe:2.3:a:oracle:jdk:1.5.0:update_40::::::* cpe:2.3:a:oracle:jdk:1.5.0:update_41::::::* (and previous)	Configuration 1 OR cpe:2.3:a:oracle:jre:1.5.0:update_38::::::* cpe:2.3:a:oracle:jre:1.5.0:update_36::::::* cpe:2.3:a:sun:jre:1.5.0:update33::::::* cpe:2.3:a:sun:jre:1.5.0:update31::::::* cpe:2.3:a:sun:jre:1.5.0:update29::::::* cpe:2.3:a:sun:jre:1.5.0:update28::::::* cpe:2.3:a:sun:jre:1.5.0:update27::::::* cpe:2.3:a:sun:jre:1.5.0:update26::::::* cpe:2.3:a:sun:jre:1.5.0:update25::::::* cpe:2.3:a:sun:jre:1.5.0:update24::::::* cpe:2.3:a:sun:jre:1.5.0:update23::::::* cpe:2.3:a:sun:jre:1.5.0:update22::::::* cpe:2.3:a:sun:jre:1.5.0:update21::::::* cpe:2.3:a:sun:jre:1.5.0:update20::::::* cpe:2.3:a:sun:jre:1.5.0:update19::::::* cpe:2.3:a:sun:jre:1.5.0:update18::::::* cpe:2.3:a:sun:jre:1.5.0:update17::::::* cpe:2.3:a:sun:jre:1.5.0:update16::::::* cpe:2.3:a:sun:jre:1.5.0:update15::::::* cpe:2.3:a:sun:jre:1.5.0:update14::::::* cpe:2.3:a:sun:jre:1.5.0:update13::::::* cpe:2.3:a:sun:jre:1.5.0:update12::::::* cpe:2.3:a:sun:jre:1.5.0:update11::::::* cpe:2.3:a:sun:jre:1.5.0:update10::::::* cpe:2.3:a:sun:jre:1.5.0:update9::::::* cpe:2.3:a:sun:jre:1.5.0:update8::::::* cpe:2.3:a:sun:jre:1.5.0:update7::::::* cpe:2.3:a:sun:jre:1.5.0:update6::::::* cpe:2.3:a:sun:jre:1.5.0:update5::::::* cpe:2.3:a:sun:jre:1.5.0:update4::::::* cpe:2.3:a:sun:jre:1.5.0:update3::::::* cpe:2.3:a:sun:jre:1.5.0:update2::::::* cpe:2.3:a:sun:jre:1.5.0:update1::::::* cpe:2.3:a:sun:jre:1.5.0::::::: cpe:2.3:a:oracle:jre:1.5.0:update_40::::::* cpe:2.3:a:oracle:jre:1.5.0:update_41::::::* (and previous) Configuration 2 OR cpe:2.3:a:oracle:jdk:1.6.0:update_38::::::* cpe:2.3:a:oracle:jdk:1.6.0:update_37::::::* cpe:2.3:a:oracle:jdk:1.6.0:update_35::::::* cpe:2.3:a:oracle:jdk:1.6.0:update_34::::::* cpe:2.3:a:oracle:jdk:1.6.0:update_33::::::* cpe:2.3:a:oracle:jdk:1.6.0:update_32::::::* cpe:2.3:a:oracle:jdk:1.6.0:update_31::::::* cpe:2.3:a:oracle:jdk:1.6.0:update_30::::::* cpe:2.3:a:oracle:jdk:1.6.0:update_29::::::* cpe:2.3:a:oracle:jdk:1.6.0:update_27::::::* cpe:2.3:a:oracle:jdk:1.6.0:update_26::::::* cpe:2.3:a:oracle:jdk:1.6.0:update_25::::::* cpe:2.3:a:oracle:jdk:1.6.0:update_24::::::* cpe:2.3:a:oracle:jdk:1.6.0:update_23::::::* cpe:2.3:a:oracle:jdk:1.6.0:update_22::::::* cpe:2.3:a:sun:jdk:1.6.0:update_21::::::* cpe:2.3:a:sun:jdk:1.6.0:update_20::::::* cpe:2.3:a:sun:jdk:1.6.0:update_19::::::* cpe:2.3:a:sun:jdk:1.6.0:update_18::::::* cpe:2.3:a:sun:jdk:1.6.0:update_17::::::* cpe:2.3:a:sun:jdk:1.6.0:update_16::::::* cpe:2.3:a:sun:jdk:1.6.0:update_15::::::* cpe:2.3:a:sun:jdk:1.6.0:update_14::::::* cpe:2.3:a:sun:jdk:1.6.0:update_13::::::* cpe:2.3:a:sun:jdk:1.6.0:update_12::::::* cpe:2.3:a:sun:jdk:1.6.0:update_11::::::* cpe:2.3:a:sun:jdk:1.6.0:update_10::::::* cpe:2.3:a:sun:jdk:1.6.0:update_7::::::* cpe:2.3:a:sun:jdk:1.6.0:update_6::::::* cpe:2.3:a:sun:jdk:1.6.0:update_5::::::* cpe:2.3:a:sun:jdk:1.6.0:update_4::::::* cpe:2.3:a:sun:jdk:1.6.0:update_3::::::* cpe:2.3:a:sun:jdk:1.6.0:update2::::::* cpe:2.3:a:sun:jdk:1.6.0:update1_b06::::::* cpe:2.3:a:sun:jdk:1.6.0:update1::::::* cpe:2.3:a:sun:jdk:1.6.0::::::: cpe:2.3:a:oracle:jdk:1.6.0:update_39::::::* cpe:2.3:a:oracle:jdk:1.6.0:update_41::::::* cpe:2.3:a:oracle:jdk:1.6.0:update_43::::::* (and previous) Configuration 3 OR cpe:2.3:a:oracle:jre:1.7.0::::::: cpe:2.3:a:oracle:jre:1.7.0:update1::::::* cpe:2.3:a:oracle:jre:1.7.0:update2::::::* cpe:2.3:a:oracle:jre:1.7.0:update3::::::* cpe:2.3:a:oracle:jre:1.7.0:update4::::::* cpe:2.3:a:oracle:jre:1.7.0:update5::::::* cpe:2.3:a:oracle:jre:1.7.0:update6::::::* cpe:2.3:a:oracle:jre:1.7.0:update7::::::* cpe:2.3:a:oracle:jre:1.7.0:update9::::::* cpe:2.3:a:oracle:jre:1.7.0:update10::::::* cpe:2.3:a:oracle:jre:1.7.0:update11::::::* cpe:2.3:a:oracle:jre:1.7.0:update13::::::* cpe:2.3:a:oracle:jre:1.7.0:update15::::::* cpe:2.3:a:oracle:jre:1.7.0:update17::::::* (and previous) Configuration 4 OR cpe:2.3:a:oracle:jre:1.6.0:update_38::::::* cpe:2.3:a:oracle:jre:1.6.0:update_37::::::* cpe:2.3:a:oracle:jre:1.6.0:update_35::::::* cpe:2.3:a:oracle:jre:1.6.0:update_34::::::* cpe:2.3:a:oracle:jre:1.6.0:update_33::::::* cpe:2.3:a:oracle:jre:1.6.0:update_32::::::* cpe:2.3:a:oracle:jre:1.6.0:update_31::::::* cpe:2.3:a:oracle:jre:1.6.0:update_30::::::* cpe:2.3:a:oracle:jre:1.6.0:update_29::::::* cpe:2.3:a:oracle:jre:1.6.0:update_27::::::* cpe:2.3:a:oracle:jre:1.6.0:update_26::::::* cpe:2.3:a:oracle:jre:1.6.0:update_25::::::* cpe:2.3:a:oracle:jre:1.6.0:update_24::::::* cpe:2.3:a:oracle:jre:1.6.0:update_23::::::* cpe:2.3:a:oracle:jre:1.6.0:update_22::::::* cpe:2.3:a:sun:jre:1.6.0:update_21::::::* cpe:2.3:a:sun:jre:1.6.0:update_20::::::* cpe:2.3:a:sun:jre:1.6.0:update_19::::::* cpe:2.3:a:sun:jre:1.6.0:update_18::::::* cpe:2.3:a:sun:jre:1.6.0:update_17::::::* cpe:2.3:a:sun:jre:1.6.0:update_16::::::* cpe:2.3:a:sun:jre:1.6.0:update_15::::::* cpe:2.3:a:sun:jre:1.6.0:update_14::::::* cpe:2.3:a:sun:jre:1.6.0:update_13::::::* cpe:2.3:a:sun:jre:1.6.0:update_12::::::* cpe:2.3:a:sun:jre:1.6.0:update_11::::::* cpe:2.3:a:sun:jre:1.6.0:update_10::::::* cpe:2.3:a:sun:jre:1.6.0:update_9::::::* cpe:2.3:a:sun:jre:1.6.0:update_7::::::* cpe:2.3:a:sun:jre:1.6.0:update_6::::::* cpe:2.3:a:sun:jre:1.6.0:update_5::::::* cpe:2.3:a:sun:jre:1.6.0:update_4::::::* cpe:2.3:a:sun:jre:1.6.0:update_3::::::* cpe:2.3:a:sun:jre:1.6.0:update_2::::::* cpe:2.3:a:sun:jre:1.6.0:update_1::::::* cpe:2.3:a:sun:jre:1.6.0::::::: cpe:2.3:a:oracle:jre:1.6.0:update_39::::::* cpe:2.3:a:oracle:jre:1.6.0:update_41::::::* cpe:2.3:a:oracle:jre:1.6.0:update_43::::::* (and previous) Configuration 5 OR cpe:2.3:a:oracle:jdk:1.7.0::::::: cpe:2.3:a:oracle:jdk:1.7.0:update1::::::* cpe:2.3:a:oracle:jdk:1.7.0:update2::::::* cpe:2.3:a:oracle:jdk:1.7.0:update3::::::* cpe:2.3:a:oracle:jdk:1.7.0:update4::::::* cpe:2.3:a:oracle:jdk:1.7.0:update5::::::* cpe:2.3:a:oracle:jdk:1.7.0:update6::::::* cpe:2.3:a:oracle:jdk:1.7.0:update7::::::* cpe:2.3:a:oracle:jdk:1.7.0:update9::::::* cpe:2.3:a:oracle:jdk:1.7.0:update10::::::* cpe:2.3:a:oracle:jdk:1.7.0:update11::::::* cpe:2.3:a:oracle:jdk:1.7.0:update13::::::* cpe:2.3:a:oracle:jdk:1.7.0:update15::::::* cpe:2.3:a:oracle:jdk:1.7.0:update17::::::* (and previous) Configuration 6 OR cpe:2.3:a:oracle:jdk:1.5.0:update_38::::::* cpe:2.3:a:oracle:jdk:1.5.0:update_36::::::* cpe:2.3:a:sun:jdk:1.5.0:update33::::::* cpe:2.3:a:sun:jdk:1.5.0:update31::::::* cpe:2.3:a:sun:jdk:1.5.0:update29::::::* cpe:2.3:a:sun:jdk:1.5.0:update28::::::* cpe:2.3:a:sun:jdk:1.5.0:update27::::::* cpe:2.3:a:sun:jdk:1.5.0:update26::::::* cpe:2.3:a:sun:jdk:1.5.0:update25::::::* cpe:2.3:a:sun:jdk:1.5.0:update24::::::* cpe:2.3:a:sun:jdk:1.5.0:update23::::::* cpe:2.3:a:sun:jdk:1.5.0:update22::::::* cpe:2.3:a:sun:jdk:1.5.0:update21::::::* cpe:2.3:a:sun:jdk:1.5.0:update20::::::* cpe:2.3:a:sun:jdk:1.5.0:update19::::::* cpe:2.3:a:sun:jdk:1.5.0:update18::::::* cpe:2.3:a:sun:jdk:1.5.0:update17::::::* cpe:2.3:a:sun:jdk:1.5.0:update16::::::* cpe:2.3:a:sun:jdk:1.5.0:update15::::::* cpe:2.3:a:sun:jdk:1.5.0:update14::::::* cpe:2.3:a:sun:jdk:1.5.0:update13::::::* cpe:2.3:a:sun:jdk:1.5.0:update12::::::* cpe:2.3:a:sun:jdk:1.5.0:update11_b03::::::* cpe:2.3:a:sun:jdk:1.5.0:update11::::::* cpe:2.3:a:sun:jdk:1.5.0:update10::::::* cpe:2.3:a:sun:jdk:1.5.0:update9::::::* cpe:2.3:a:sun:jdk:1.5.0:update8::::::* cpe:2.3:a:sun:jdk:1.5.0:update7_b03::::::* cpe:2.3:a:sun:jdk:1.5.0:update7::::::* cpe:2.3:a:sun:jdk:1.5.0:update6::::::* cpe:2.3:a:sun:jdk:1.5.0:update5::::::* cpe:2.3:a:sun:jdk:1.5.0:update4::::::* cpe:2.3:a:sun:jdk:1.5.0:update3::::::* cpe:2.3:a:sun:jdk:1.5.0:update2::::::* cpe:2.3:a:sun:jdk:1.5.0:update1::::::* cpe:2.3:a:sun:jdk:1.5.0::::::: cpe:2.3:a:oracle:jdk:1.5.0:update_40::::::* cpe:2.3:a:oracle:jdk:1.5.0:update_41::::::* (and previous)

CVE Modified by [email protected]

May. 06, 2015

Action	Type	Old Value	New Value
Added	Reference		http://www.securityfocus.com/bid/59159

Initial Analysis by [email protected]

Apr. 18, 2013

Action	Type	Old Value	New Value

EPSS is a daily estimate of the probability of exploitation activity being observed over the next 30 days. Following chart shows the EPSS score history of the vulnerability.

CWE - Common Weakness Enumeration

While CVE identifies specific instances of vulnerabilities, CWE categorizes the common flaws or weaknesses that can lead to vulnerabilities. CVE-2013-2424 is associated with the following CWEs:

Common Attack Pattern Enumeration and Classification (CAPEC)

Common Attack Pattern Enumeration and Classification (CAPEC) stores attack patterns, which are descriptions of the common attributes and approaches employed by adversaries to exploit the CVE-2013-2424 weaknesses.

CVE-2013-2424

Oracle Java SE JMX Remote Confidentiality Vulnerability

Description

INFO

April 17, 2013, 6:55 p.m.

May 13, 2022, 2:53 p.m.

[email protected]

Yes !

2.9

10.0

Affected Products

References to Advisories, Solutions, and Tools

CVE Modified by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CVE Modified by [email protected]

CVE Translated by [email protected]

Modified Analysis by [email protected]

CVE Modified by [email protected]

Initial Analysis by [email protected]

CWE - Common Weakness Enumeration

Common Attack Pattern Enumeration and Classification (CAPEC)

Exploit Prediction

1.01 }} 0.19%

0.81529

CVSS2 - Vulnerability Scoring System

Theme Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position