CVE-2013-5893

N/A Unknown

Published: January 15, 2014 Modified: April 29, 2026

Description

Unspecified vulnerability in Oracle Java SE 7u45 and Java SE Embedded 7u45, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that the issue is related to improper handling of methods in MethodHandles in HotSpot JVM, which allows attackers to escape the sandbox.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://hg.openjdk.java.net/jdk7u/jdk7u/hotspot/rev/839100e42498

Source: secalert_us@oracle.com

http://lists.opensuse.org/opensuse-updates/2014-01/msg00105.html

Source: secalert_us@oracle.com

http://lists.opensuse.org/opensuse-updates/2014-01/msg00107.html

Source: secalert_us@oracle.com

http://lists.opensuse.org/opensuse-updates/2014-02/msg00000.html

Source: secalert_us@oracle.com

http://marc.info/?l=bugtraq&m=139402697611681&w=2

Source: secalert_us@oracle.com

http://osvdb.org/102000

Source: secalert_us@oracle.com

http://rhn.redhat.com/errata/RHSA-2014-0026.html

Source: secalert_us@oracle.com

http://rhn.redhat.com/errata/RHSA-2014-0027.html

Source: secalert_us@oracle.com

http://rhn.redhat.com/errata/RHSA-2014-0030.html

Source: secalert_us@oracle.com

http://secunia.com/advisories/56432

Source: secalert_us@oracle.com

http://secunia.com/advisories/56485

Source: secalert_us@oracle.com

http://secunia.com/advisories/56486

Source: secalert_us@oracle.com

http://secunia.com/advisories/56535

Source: secalert_us@oracle.com

http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html

Source: secalert_us@oracle.com

Vendor Advisory

http://www.securityfocus.com/bid/64758

Source: secalert_us@oracle.com

http://www.securityfocus.com/bid/64863

Source: secalert_us@oracle.com

http://www.securitytracker.com/id/1029608

Source: secalert_us@oracle.com

http://www.ubuntu.com/usn/USN-2089-1

Source: secalert_us@oracle.com

https://bugzilla.redhat.com/show_bug.cgi?id=1051549

Source: secalert_us@oracle.com

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04166777

Source: secalert_us@oracle.com

http://hg.openjdk.java.net/jdk7u/jdk7u/hotspot/rev/839100e42498

Source: af854a3a-2127-422b-91ae-364da2661108

http://lists.opensuse.org/opensuse-updates/2014-01/msg00105.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://lists.opensuse.org/opensuse-updates/2014-01/msg00107.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://lists.opensuse.org/opensuse-updates/2014-02/msg00000.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://marc.info/?l=bugtraq&m=139402697611681&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://osvdb.org/102000

Source: af854a3a-2127-422b-91ae-364da2661108

http://rhn.redhat.com/errata/RHSA-2014-0026.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://rhn.redhat.com/errata/RHSA-2014-0027.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://rhn.redhat.com/errata/RHSA-2014-0030.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/56432

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/56485

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/56486

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/56535

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.securityfocus.com/bid/64758

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/64863

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securitytracker.com/id/1029608

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.ubuntu.com/usn/USN-2089-1

Source: af854a3a-2127-422b-91ae-364da2661108

https://bugzilla.redhat.com/show_bug.cgi?id=1051549

Source: af854a3a-2127-422b-91ae-364da2661108

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04166777

Source: af854a3a-2127-422b-91ae-364da2661108

40 reference(s) from NVD

Quick Stats

CVSS v3 Score

N/A / 10.0

EPSS (Exploit Probability)

7.0%

92th percentile

Exploitation Status

Not in CISA KEV

Affected Vendors

oracle