CISA Known Exploited Vulnerability

This vulnerability is actively exploited in the wild and listed in the CISA Known Exploited Vulnerabilities catalog.

Remediation Deadline: Jun 15, 2022

CVE-2013-0431

High

EPSS 91.6%CISA KEVRansomware

Oracle/Java Runtime Environment (JRE)

Description

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle allows remote attackers to bypass the Java security sandbox.

91.6%

Higher than 99.7% of all CVEs

https://nvd.nist.gov/vuln/detail/CVE-2013-0431

CRITICAL

In CISA KEV

High EPSS

Ransomware

Published

May 25, 2022

Added to KEV

May 25, 2022

Remediation Due

Jun 15, 2022

Oracle

Java Runtime Environment (JRE)