Exploit for #VU6171 Security bypass in Oracle Java SE

Exploit for #VU6171 Security bypass in Oracle Java SE

Published: 2020-03-18

Vulnerability identifier: #VU6171

Vulnerability risk: Low

CVSSv3.1: 4.1 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N/E:H/RL:O/RC:C]

CVE-ID: CVE-2013-2423

CWE-ID: CWE-284

Exploitation vector: Network

Exploits in database: 2

March 18, 2020
- Java Applet - Reflection Type Confusion Remote Code Execution (Metasploit) [Exploit-DB]
- Java Applet Reflection Type Confusion Remote Code Execution [Metasploit]

Impact: Data manipulation

Vulnerable software:
Oracle Java SE
Universal components / Libraries / Software for developers

Vendor: Oracle