CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2013-0426

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0690%
EPSS Percentile42.63th
Published2013年2月2日
Last Modified2026年4月29日

Vulnerability Description

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-0425 and CVE-2013-0428. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect "access control checks" in the logging API that allow remote attackers to bypass Java sandbox restrictions.

Affected Platforms (CPE)

📦
Oracle

Jre

= 1.7.0
📦
Oracle

Jre

= 1.7.0
📦
Oracle

Jre

= 1.7.0
📦
Oracle

Jre

= 1.7.0
📦
Oracle

Jre

= 1.7.0
📦
Oracle

Jre

= 1.7.0
📦
Oracle

Jre

= 1.7.0
📦
Oracle

Jre

= 1.7.0
📦
Oracle

Jre

= 1.7.0
📦
Oracle

Jre

= 1.7.0
📦
Oracle

Jre

= 1.7.0
📦
Oracle

Jdk

= 1.7.0
📦
Oracle

Jdk

= 1.7.0
📦
Oracle

Jdk

= 1.7.0
📦
Oracle

Jdk

= 1.7.0
📦
Oracle

Jdk

= 1.7.0
📦
Oracle

Jdk

= 1.7.0
📦
Oracle

Jdk

= 1.7.0
📦
Oracle

Jdk

= 1.7.0
📦
Oracle

Jdk

= 1.7.0
📦
Oracle

Jdk

= 1.7.0
📦
Oracle

Jdk

= 1.7.0
📦
Oracle

Jre

= 1.6.0
📦
Oracle

Jre

= 1.6.0
📦
Oracle

Jre

= 1.6.0
📦
Oracle

Jre

= 1.6.0
📦
Oracle

Jre

= 1.6.0
📦
Oracle

Jre

= 1.6.0
📦
Oracle

Jre

= 1.6.0
📦
Oracle

Jre

= 1.6.0
📦
Oracle

Jre

= 1.6.0
📦
Oracle

Jre

= 1.6.0
📦
Oracle

Jre

= 1.6.0
📦
Oracle

Jre

= 1.6.0
📦
Oracle

Jre

= 1.6.0
📦
Oracle

Jre

= 1.6.0
📦
Oracle

Jre

= 1.6.0
📦
Sun

Jre

= 1.6.0
📦
Sun

Jre

= 1.6.0
📦
Sun

Jre

= 1.6.0
📦
Sun

Jre

= 1.6.0
📦
Sun

Jre

= 1.6.0
📦
Sun

Jre

= 1.6.0
📦
Sun

Jre

= 1.6.0
📦
Sun

Jre

= 1.6.0
📦
Sun

Jre

= 1.6.0
📦
Sun

Jre

= 1.6.0
📦
Sun

Jre

= 1.6.0
📦
Sun

Jre

= 1.6.0
📦
Sun

Jre

= 1.6.0
📦
Sun

Jre

= 1.6.0
📦
Sun

Jre

= 1.6.0
📦
Sun

Jre

= 1.6.0
📦
Sun

Jre

= 1.6.0
📦
Sun

Jre

= 1.6.0
📦
Sun

Jre

= 1.6.0
📦
Sun

Jre

= 1.6.0
📦
Sun

Jre

= 1.6.0
📦
Oracle

Jdk

= 1.6.0
📦
Oracle

Jdk

= 1.6.0
📦
Oracle

Jdk

= 1.6.0
📦
Oracle

Jdk

= 1.6.0
📦
Oracle

Jdk

= 1.6.0
📦
Oracle

Jdk

= 1.6.0
📦
Oracle

Jdk

= 1.6.0
📦
Oracle

Jdk

= 1.6.0
📦
Oracle

Jdk

= 1.6.0
📦
Oracle

Jdk

= 1.6.0
📦
Oracle

Jdk

= 1.6.0
📦
Oracle

Jdk

= 1.6.0
📦
Oracle

Jdk

= 1.6.0
📦
Oracle

Jdk

= 1.6.0
📦
Oracle

Jdk

= 1.6.0
📦
Sun

Jdk

= 1.6.0
📦
Sun

Jdk

= 1.6.0
📦
Sun

Jdk

= 1.6.0
📦
Sun

Jdk

= 1.6.0
📦
Sun

Jdk

= 1.6.0
📦
Sun

Jdk

= 1.6.0
📦
Sun

Jdk

= 1.6.0
📦
Sun

Jdk

= 1.6.0
📦
Sun

Jdk

= 1.6.0
📦
Sun

Jdk

= 1.6.0
📦
Sun

Jdk

= 1.6.0
📦
Sun

Jdk

= 1.6.0
📦
Sun

Jdk

= 1.6.0
📦
Sun

Jdk

= 1.6.0
📦
Sun

Jdk

= 1.6.0
📦
Sun

Jdk

= 1.6.0
📦
Sun

Jdk

= 1.6.0
📦
Sun

Jdk

= 1.6.0
📦
Sun

Jdk

= 1.6.0
📦
Sun

Jdk

= 1.6.0
📦
Sun

Jdk

= 1.6.0
📦
Oracle

Jre

= 1.5.0
📦
Oracle

Jre

= 1.5.0
📦
Sun

Jre

= 1.5.0
📦
Sun

Jre

= 1.5.0
📦
Sun

Jre

= 1.5.0
📦
Sun

Jre

= 1.5.0
📦
Sun

Jre

= 1.5.0
📦
Sun

Jre

= 1.5.0
📦
Sun

Jre

= 1.5.0
📦
Sun

Jre

= 1.5.0
📦
Sun

Jre

= 1.5.0
📦
Sun

Jre

= 1.5.0
📦
Sun

Jre

= 1.5.0
📦
Sun

Jre

= 1.5.0
📦
Sun

Jre

= 1.5.0
📦
Sun

Jre

= 1.5.0
📦
Sun

Jre

= 1.5.0
📦
Sun

Jre

= 1.5.0
📦
Sun

Jre

= 1.5.0
📦
Sun

Jre

= 1.5.0
📦
Sun

Jre

= 1.5.0
📦
Sun

Jre

= 1.5.0
📦
Sun

Jre

= 1.5.0
📦
Sun

Jre

= 1.5.0
📦
Sun

Jre

= 1.5.0
📦
Sun

Jre

= 1.5.0
📦
Sun

Jre

= 1.5.0
📦
Sun

Jre

= 1.5.0
📦
Sun

Jre

= 1.5.0
📦
Sun

Jre

= 1.5.0
📦
Sun

Jre

= 1.5.0
📦
Sun

Jre

= 1.5.0
📦
Sun

Jre

= 1.5.0
📦
Sun

Jre

= 1.5.0
📦
Oracle

Jdk

= 1.5.0
📦
Oracle

Jdk

= 1.5.0
📦
Sun

Jdk

= 1.5.0
📦
Sun

Jdk

= 1.5.0
📦
Sun

Jdk

= 1.5.0
📦
Sun

Jdk

= 1.5.0
📦
Sun

Jdk

= 1.5.0
📦
Sun

Jdk

= 1.5.0
📦
Sun

Jdk

= 1.5.0
📦
Sun

Jdk

= 1.5.0
📦
Sun

Jdk

= 1.5.0
📦
Sun

Jdk

= 1.5.0
📦
Sun

Jdk

= 1.5.0
📦
Sun

Jdk

= 1.5.0
📦
Sun

Jdk

= 1.5.0
📦
Sun

Jdk

= 1.5.0
📦
Sun

Jdk

= 1.5.0
📦
Sun

Jdk

= 1.5.0
📦
Sun

Jdk

= 1.5.0
📦
Sun

Jdk

= 1.5.0
📦
Sun

Jdk

= 1.5.0
📦
Sun

Jdk

= 1.5.0
📦
Sun

Jdk

= 1.5.0
📦
Sun

Jdk

= 1.5.0
📦
Sun

Jdk

= 1.5.0
📦
Sun

Jdk

= 1.5.0
📦
Sun

Jdk

= 1.5.0
📦
Sun

Jdk

= 1.5.0
📦
Sun

Jdk

= 1.5.0
📦
Sun

Jdk

= 1.5.0
📦
Sun

Jdk

= 1.5.0
📦
Sun

Jdk

= 1.5.0
📦
Sun

Jdk

= 1.5.0
📦
Sun

Jdk

= 1.5.0
📦
Sun

Jdk

= 1.5.0
📦
Sun

Jdk

= 1.5.0
📦
Oracle

Jre

<= 1.4.2_40
📦
Oracle

Jre

= 1.4.2_38
📦
Sun

Jre

= 1.4.2
📦
Sun

Jre

= 1.4.2_1
📦
Sun

Jre

= 1.4.2_2
📦
Sun

Jre

= 1.4.2_3
📦
Sun

Jre

= 1.4.2_4
📦
Sun

Jre

= 1.4.2_5
📦
Sun

Jre

= 1.4.2_6
📦
Sun

Jre

= 1.4.2_7
📦
Sun

Jre

= 1.4.2_8
📦
Sun

Jre

= 1.4.2_9
📦
Sun

Jre

= 1.4.2_10
📦
Sun

Jre

= 1.4.2_11
📦
Sun

Jre

= 1.4.2_12
📦
Sun

Jre

= 1.4.2_13
📦
Sun

Jre

= 1.4.2_14
📦
Sun

Jre

= 1.4.2_15
📦
Sun

Jre

= 1.4.2_16
📦
Sun

Jre

= 1.4.2_17
📦
Sun

Jre

= 1.4.2_18
📦
Sun

Jre

= 1.4.2_19
📦
Sun

Jre

= 1.4.2_20
📦
Sun

Jre

= 1.4.2_21
📦
Sun

Jre

= 1.4.2_22
📦
Sun

Jre

= 1.4.2_23
📦
Sun

Jre

= 1.4.2_24
📦
Sun

Jre

= 1.4.2_25
📦
Sun

Jre

= 1.4.2_26
📦
Sun

Jre

= 1.4.2_27
📦
Sun

Jre

= 1.4.2_28
📦
Sun

Jre

= 1.4.2_29
📦
Sun

Jre

= 1.4.2_30
📦
Sun

Jre

= 1.4.2_31
📦
Sun

Jre

= 1.4.2_32
📦
Sun

Jre

= 1.4.2_33
📦
Sun

Jre

= 1.4.2_34
📦
Sun

Jre

= 1.4.2_35
📦
Sun

Jre

= 1.4.2_36
📦
Sun

Jre

= 1.4.2_37
📦
Oracle

Jdk

<= 1.4.2_40
📦
Oracle

Jdk

= 1.4.2_38
📦
Sun

Jdk

= 1.4.2
📦
Sun

Jdk

= 1.4.2_1
📦
Sun

Jdk

= 1.4.2_2
📦
Sun

Jdk

= 1.4.2_3
📦
Sun

Jdk

= 1.4.2_4
📦
Sun

Jdk

= 1.4.2_5
📦
Sun

Jdk

= 1.4.2_6
📦
Sun

Jdk

= 1.4.2_7
📦
Sun

Jdk

= 1.4.2_8
📦
Sun

Jdk

= 1.4.2_9
📦
Sun

Jdk

= 1.4.2_10
📦
Sun

Jdk

= 1.4.2_11
📦
Sun

Jdk

= 1.4.2_12
📦
Sun

Jdk

= 1.4.2_13
📦
Sun

Jdk

= 1.4.2_14
📦
Sun

Jdk

= 1.4.2_15
📦
Sun

Jdk

= 1.4.2_16
📦
Sun

Jdk

= 1.4.2_17
📦
Sun

Jdk

= 1.4.2_18
📦
Sun

Jdk

= 1.4.2_19
📦
Sun

Jdk

= 1.4.2_22
📦
Sun

Jdk

= 1.4.2_23
📦
Sun

Jdk

= 1.4.2_25
📦
Sun

Jdk

= 1.4.2_26
📦
Sun

Jdk

= 1.4.2_27
📦
Sun

Jdk

= 1.4.2_28
📦
Sun

Jdk

= 1.4.2_29
📦
Sun

Jdk

= 1.4.2_30
📦
Sun

Jdk

= 1.4.2_31
📦
Sun

Jdk

= 1.4.2_32
📦
Sun

Jdk

= 1.4.2_33
📦
Sun

Jdk

= 1.4.2_34
📦
Sun

Jdk

= 1.4.2_35
📦
Sun

Jdk

= 1.4.2_36
📦
Sun

Jdk

= 1.4.2_37

References & Advisories

🔗 http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=907346
🔗 http://icedtea.classpath.org/hg/release/icedtea6-1.11/file/icedtea6-1.11.6/NEWS
🔗 http://icedtea.classpath.org/hg/release/icedtea7-forest-2.3/jdk/rev/ce105dd2e4de
🔗 http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00014.html
🔗 http://lists.opensuse.org/opensuse-security-announce/2013-03/msg00001.html
🔗 http://lists.opensuse.org/opensuse-security-announce/2013-03/msg00034.html
🔗 http://marc.info/?l=bugtraq&m=136439120408139&w=2
🔗 http://marc.info/?l=bugtraq&m=136570436423916&w=2

相關漏洞威脅

CVE-2012-508610.0

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, and 6 Update 3...

CVE-2013-243110.0

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, and OpenJDK 6...

CVE-2004-276410.0

Sun SDK and Java Runtime Environment (JRE) 1.4.2 through 1.4.2_04, 1.4.1 through 1.4.1_07, and 1.4.0 through 1.4.0_04 allows untru...

CVE-2013-243210.0

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 a...