vulnerability

CentOS Linux: CVE-2017-10388: Critical: java-1.8.0-openjdk security update (Multiple Advisories)

Try Surface Command
Back to search
Severity
5
CVSS
(AV:N/AC:H/Au:N/C:P/I:P/A:P)
Published
10/19/2017
Added
10/23/2017
Modified
05/25/2023

Description

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 6u161, 7u151, 8u144 and 9; Java SE Embedded: 8u144. Difficult to exploit vulnerability allows unauthenticated attacker with network access via Kerberos to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of Java SE, Java SE Embedded. Note: Applies to the Java SE Kerberos client. CVSS 3.0 Base Score 7.5 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H).

Solution(s)

centos-upgrade-java-1-7-0-openjdkcentos-upgrade-java-1-7-0-openjdk-accessibilitycentos-upgrade-java-1-7-0-openjdk-debuginfocentos-upgrade-java-1-7-0-openjdk-democentos-upgrade-java-1-7-0-openjdk-develcentos-upgrade-java-1-7-0-openjdk-headlesscentos-upgrade-java-1-7-0-openjdk-javadoccentos-upgrade-java-1-7-0-openjdk-srccentos-upgrade-java-1-7-1-ibmcentos-upgrade-java-1-7-1-ibm-democentos-upgrade-java-1-7-1-ibm-develcentos-upgrade-java-1-7-1-ibm-jdbccentos-upgrade-java-1-7-1-ibm-plugincentos-upgrade-java-1-7-1-ibm-srccentos-upgrade-java-1-8-0-ibmcentos-upgrade-java-1-8-0-ibm-democentos-upgrade-java-1-8-0-ibm-develcentos-upgrade-java-1-8-0-ibm-jdbccentos-upgrade-java-1-8-0-ibm-plugincentos-upgrade-java-1-8-0-ibm-srccentos-upgrade-java-1-8-0-openjdkcentos-upgrade-java-1-8-0-openjdk-accessibilitycentos-upgrade-java-1-8-0-openjdk-accessibility-debugcentos-upgrade-java-1-8-0-openjdk-debugcentos-upgrade-java-1-8-0-openjdk-debuginfocentos-upgrade-java-1-8-0-openjdk-democentos-upgrade-java-1-8-0-openjdk-demo-debugcentos-upgrade-java-1-8-0-openjdk-develcentos-upgrade-java-1-8-0-openjdk-devel-debugcentos-upgrade-java-1-8-0-openjdk-headlesscentos-upgrade-java-1-8-0-openjdk-headless-debugcentos-upgrade-java-1-8-0-openjdk-javadoccentos-upgrade-java-1-8-0-openjdk-javadoc-debugcentos-upgrade-java-1-8-0-openjdk-javadoc-zipcentos-upgrade-java-1-8-0-openjdk-javadoc-zip-debugcentos-upgrade-java-1-8-0-openjdk-srccentos-upgrade-java-1-8-0-openjdk-src-debugcentos-upgrade-satellitecentos-upgrade-satellite-branding

References

Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today