CVE-2011-3544
Oracle Java SE Runtime Environment (JRE) Arbitrary Code Execution Vulnerability
CVSS
—
No CVSS
EPSS
96.7%
p100
KEV
YES
Mar 3, 2022
Exploit Today
80
0-100
Published: — · Last modified: —
96.7%EPSS · 30 days96.7%
2026-06-302026-07-16
Product
Oracle / Java SE JDK and JRE
Vulnerability
Oracle Java SE Runtime Environment (JRE) Arbitrary Code Execution Vulnerability
Added to KEV
Mar 3, 2022
Remediate by
Mar 24, 2022
Known ransomware use
No
Summary description
An access control vulnerability exists in the Applet Rhino Script Engine component of Oracle's Java Runtime Environment allows an attacker to remotely execute arbitrary code.
Required action
Apply updates per vendor instructions.
Notes
https://nvd.nist.gov/vuln/detail/CVE-2011-3544
No related CVEs by CWE or product.