Every CVE whose affected-product data names Sun Java Plug-in, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2001-1008 — CVSS 7.5 (high): Java Plugin 1.4 for JRE 1.3 executes signed applets even if the certificate is expired, which could allow remote attackers to conduct…
CVE-2003-1516 — CVSS 6.8 (medium): The org.apache.xalan.processor.XSLProcessorVersion class in Java Plug-in 1.4.2_01 allows signed and unsigned applets to share variables…
CVE-2003-1521 — CVSS 6.4 (medium): Sun Java Plug-In 1.4 through 1.4.2_02 allows remote attackers to repeatedly access the floppy drive via the createXmlDocument method in the…
CVE-2005-4845 — CVSS 5.0 (medium): The Java Plug-in 1.4.2_03 and 1.4.2_04 controls, and the 1.4.2_03 and 1.4.2_04 <applet> redirector controls, allow remote attackers to…