CVE-2013-2465

CVSS 2.0 Score 10 of 10 (high)

Details

Published Jun 18, 2013

Updated: Jan 6, 2025

Summary

CVE-2013-2465 is a vulnerability affecting multiple versions of Oracle Java SE and OpenJDK, specifically Java Runtime Environment (JRE) components in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier. This issue, as disclosed in the June 2013 Critical Patch Update, allows remote attackers to impact confidentiality, integrity, and availability. The exact nature of the vulnerability remains unspecified, although there are unconfirmed claims that it involves unknown vectors related to 2D image handling. Oracle has not yet commented on these claims, which suggest the possibility of a Java sandbox bypass.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

Sun JRE
Java Runtime Environment
SUSE Linux Enterprise Server

Affected Vendors

SUSE Linux GmbH
Sun.

Advisories, Assessments, and Mitigations

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Measuring the US-China AI Gap

TerraStealerV2 and TerraLogger: Golden Chickens' New Malware Families Discovered

Uncovering MintsLoader With Recorded Future Malware Intelligence Hunting

Know What Matters

For Customers

For Partners