Vulnerability Database

290,206

Total vulnerabilities in the database

CVE-2013-5910

Unspecified vulnerability in Oracle Java SE 6u65 and 7u45, Java SE Embedded 7u45, and OpenJDK 7 allows remote attackers to affect integrity via unknown vectors related to Security. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that CanonicalizerBase.java in the XML canonicalizer allows untrusted code to access mutable byte arrays.

  • Published: Jan 15, 2014
  • Updated: Apr 13, 2023
  • CVE: CVE-2013-5910
  • Severity: Medium
  • Exploit:

CVSS v2:

  • Severity: Medium
  • Score: 5
  • AV:N/AC:L/Au:N/C:N/I:P/A:N

No CWE or OWASP classifications available.

Software From Fixed in
oracle / jdk 1.6.0-update65 1.6.0-update65.x
oracle / jre 1.6.0-update65 1.6.0-update65.x
oracle / jre 1.7.0-update45 1.7.0-update45.x
oracle / jdk 1.7.0-update45 1.7.0-update45.x