CVE-2018-2811 vulnerability in Oracle and Other Products
Published on April 19, 2018
Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Install). Supported versions that are affected are Java SE: 8u162 and 10. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where Java SE executes to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE. Note: Applies to installation process on client deployment of Java. CVSS 3.0 Base Score 7.7 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H).
Products Associated with CVE-2018-2811
You can be notified by email with stack.watch whenever vulnerabilities like CVE-2018-2811 are published in these products:
Affected Versions
Oracle Corporation Java:- Version Java SE: 8u162 is affected.
- Version 10 is affected.
Exploit Probability
EPSS
0.16%
Percentile
36.93%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.