CISA Known Exploited Vulnerability

This vulnerability is actively exploited in the wild and listed in the CISA Known Exploited Vulnerabilities catalog.

Remediation Deadline: Apr 18, 2022

High

CISA KEV

CVE-2012-5076

Oracle—Java SE

The default Java security properties configuration did not restrict access to the com.sun.org.glassfish.external and com.sun.org.glassfish.gmbal packages. An untrusted Java application or applet could use these flaws to bypass Java sandbox restrictions.

Required Action

https://nvd.nist.gov/vuln/detail/CVE-2012-5076

Vulnerability Overview

Severity: High
CISA KEV: Yes
Ransomware: Unknown
Published: Mar 28, 2022
KEV Added: Mar 28, 2022
Due Date: Apr 18, 2022
Related Articles: 0

Vendor

Oracle

Java SE