CVE-2012-5076
Oracle Java SE Sandbox Bypass Vulnerability
CVSS
—
Sin CVSS
EPSS
91.0%
p100
KEV
SÍ
28 mar 2022
Exploit Today
80
0-100
Publicado: — · Última mod.: —
91.0%EPSS · 30 días91.0%
2026-06-302026-07-16
Producto
Oracle / Java SE
Vulnerabilidad
Oracle Java SE Sandbox Bypass Vulnerability
Añadido a KEV
28 mar 2022
Remediar antes de
18 abr 2022
Uso conocido en ransomware
No
Descripción resumida
The default Java security properties configuration did not restrict access to the com.sun.org.glassfish.external and com.sun.org.glassfish.gmbal packages. An untrusted Java application or applet could use these flaws to bypass Java sandbox restrictions.
Acción requerida
Apply updates per vendor instructions.
Notas
https://nvd.nist.gov/vuln/detail/CVE-2012-5076
CVECVSSEPSSKEVRExplotTítuloVis.
CVE-2013-2465—99.9%
KEV—80Oracle Java SE Unspecified Vulnerability—CVE-2012-4681—99.9%
KEV—80Oracle Java SE Runtime Environment (JRE) Arbitrary Code Execution Vulnerability—CVE-2012-0507—99.9%
KEV—80Oracle Java SE Runtime Environment (JRE) Arbitrary Code Execution Vulnerability—CVE-2012-1723—99.8%
KEV—80Oracle Java SE Runtime Environment (JRE) Arbitrary Code Execution Vulnerability—CVE-2015-2590—97.7%
KEV—79Oracle Java SE and Java SE Embedded Remote Code Execution Vulnerability—CVE-2015-4902—96.0%
KEV—79Oracle Java SE Integrity Check Vulnerability—