Vulnerability in Ibm Java
CVE-2013-5375
Unspecified vulnerability in IBM Java SDK 7.0.0 before SR6, 6.0.1 before SR7, 6.0.0 before SR15, and 5.0.0 before SR16 FP4 allows remote attackers to access restricted classes via unspecified vectors related to XML and XSL.
EPSS: 0.019 (83.4th percentile) — read the EPSS interpretation.
Affected products
- Ibm Java — versions 5.0.0.0, 6.0.0.0, 6.0.1.0
- N/a — versions n/a
References
- IV51090 (vendor-advisory, x_refsource_AIXAPAR)
- ibm-xslt-cve20135375-security-bypass(86901) (vdb-entry, x_refsource_XF)
- psirt@us.ibm.com (x_refsource_CONFIRM, Vendor Advisory)
- RHSA-2013:1508 (x_refsource_REDHAT, vendor-advisory)
- SUSE-SU-2013:1677 (vendor-advisory, x_refsource_SUSE)
- psirt@us.ibm.com (x_refsource_CONFIRM, Vendor Advisory)
- psirt@us.ibm.com (x_refsource_CONFIRM, Vendor Advisory)
- RHSA-2013:1793 (x_refsource_REDHAT, vendor-advisory)
- RHSA-2013:1509 (x_refsource_REDHAT, vendor-advisory)
- RHSA-2013:1507 (x_refsource_REDHAT, vendor-advisory)