Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2017-10388

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 6u161, 7u151, 8u144 and 9; Java SE Embedded: 8u144. Difficult to exploit vulnerability allows unauthenticated attacker with network access via Kerberos to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of Java SE, Java SE Embedded. Note: Applies to the Java SE Kerberos client. CVSS 3.0 Base Score 7.5 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H).

  • Published: Oct 19, 2017
  • Updated: Apr 13, 2023
  • CVE: CVE-2017-10388
  • Severity: High
  • Exploit:

CVSS v3:

  • Severity: High
  • Score: 7.5
  • AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

CVSS v2:

  • Severity: Medium
  • Score: 5.1
  • AV:N/AC:H/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Software From Fixed in
oracle / jdk 1.9.0 1.9.0.x
oracle / jre 1.9.0 1.9.0.x
oracle / jdk 1.8.0-update144 1.8.0-update144.x
oracle / jdk 1.7.0-update151 1.7.0-update151.x
oracle / jdk 1.6.0-update161 1.6.0-update161.x
oracle / jre 1.6.0-update161 1.6.0-update161.x
oracle / jre 1.8.0-update144 1.8.0-update144.x
oracle / jre 1.7.0-update151 1.7.0-update151.x
redhat / enterprise_linux_desktop 7.0 7.0.x
redhat / enterprise_linux_workstation 7.0 7.0.x
redhat / enterprise_linux_server 7.0 7.0.x
redhat / enterprise_linux_desktop 6.0 6.0.x
redhat / enterprise_linux_server 6.0 6.0.x
redhat / enterprise_linux_workstation 6.0 6.0.x
redhat / enterprise_linux_server_aus 7.4 7.4.x
redhat / enterprise_linux_server_tus 7.4 7.4.x
redhat / enterprise_linux_eus 7.4 7.4.x
redhat / enterprise_linux_eus 7.5 7.5.x
redhat / satellite 5.8 5.8.x
redhat / enterprise_linux_server_tus 7.6 7.6.x
redhat / enterprise_linux_server_aus 7.6 7.6.x
redhat / enterprise_linux_eus 7.6 7.6.x
redhat / enterprise_linux_server_aus 7.7 7.7.x
redhat / enterprise_linux_server_tus 7.7 7.7.x
redhat / enterprise_linux_eus 7.7 7.7.x
netapp / virtual_storage_console 7.2 7.2.x
netapp / active_iq_unified_manager 7.3 7.3.x
netapp / active_iq_unified_manager 9.5 9.5.x
netapp / vasa_provider_for_clustered_data_ontap 7.2 7.2.x
netapp / e-series_santricity_os_controller 11.0 11.70.1.x
netapp / storage_replication_adapter_for_clustered_data_ontap 7.2 7.2.x
netapp / oncommand_unified_manager - 7.1.x
netapp / vasa_provider_for_clustered_data_ontap 6.0 6.0.x
netapp / virtual_storage_console 6.0 6.0.x
debian / debian_linux 8.0 8.0.x
debian / debian_linux 7.0 7.0.x
debian / debian_linux 9.0 9.0.x