Vulnerability in N/a
CVE-2013-0422
Multiple vulnerabilities in Oracle Java 7 before Update 11 allow remote attackers to execute arbitrary code by (1) using the public getMBeanInstantiator method in the JmxMBeanServer class to obtain a reference to a private MBeanInstantiato…
EPSS: 0.936 (99.8th percentile) — read the EPSS interpretation.
Affected products
- N/a — versions n/a
CISA KEV (Known Exploited Vulnerabilities)
This CVE is on the CISA KEV catalog, added on . CISA KEV inclusion means CISA has confirmed in-the-wild exploitation; US federal agencies are required to remediate within a published due date.
BOD 22-01 due date: .
Required action: Apply updates per vendor instructions.
Known ransomware campaign use: yes.
Public proof-of-concept exploits
References
- RHSA-2013:0156 (x_refsource_REDHAT, vendor-advisory)
- malware.dontneedcoffee.com/2013/01/0-day-17u10-spotted-in-while-disable.html (x_refsource_MISC)
- MDVSA-2013:095 (vendor-advisory, x_refsource_MANDRIVA)
- blog.fuseyism.com/index.php/2013/01/15/security-icedtea-2-1-4-2-2-4-2-3-4-relea… (x_refsource_MISC)
- openSUSE-SU-2013:0199 (vendor-advisory, x_refsource_SUSE)
- RHSA-2013:0165 (x_refsource_REDHAT, vendor-advisory)
- VU#625617 (x_refsource_CERT-VN, third-party-advisory)
- TA13-010A (x_refsource_CERT, third-party-advisory)
- partners.immunityinc.com/idocs/Java MBeanInstantiator.findClass 0day Analysis.p… (x_refsource_MISC)
- blog.fireeye.com/research/2013/01/happy-new-year-from-new-java-zero-day.html (x_refsource_MISC)
Frequently asked questions
- What is CVE-2013-0422?
- CVE-2013-0422 is a vulnerability in N/a. Published 2013-01-10.
- Is CVE-2013-0422 known to be exploited?
- Yes. CVE-2013-0422 is listed in the CISA Known Exploited Vulnerabilities catalog (added 2022-05-25), indicating it is being actively exploited. 42 public proof-of-concept repositories are indexed.