- Home
- CVEs with oval.title==Unspecified+vulnerability+in+the+Java+Runtime+Environment+%28JRE%29+component+in+Oracle+Java+SE+%28subcomponent%3A+JSSE%29+7+through+Update+11%2C+6+through+Update+38%2C+5.0+through+Update+38%2C+and+1.4.2_40+and+earlier%2C+allows+remote+attackers+to+affect+confidentiality+and+integrity+via+vectors+related+to+JSSE.+NOTE%3A+the+previous+information+is+from+the+February+2013+CPU.+Oracle+has+not+commented+on+claims+from+another+vendor+that+this+issue+is+related+to+incorrect+validation+of+Diffie-Hellman+keys%2C+which+allows+remote+attackers+to+conduct+a+%22small+subgroup+attack%22+to+force+the+use+of+weak+session+keys+or+obtain+sensitive+information+about+the+private+key.
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top