Every CVE whose affected-product data names Sun Java Se, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (14)
CVE-2009-2721 — CVSS 10.0 (critical): Multiple unspecified vulnerabilities in the Provider class in Sun Java SE 5.0 before Update 20 have unknown impact and attack vectors, aka…
CVE-2009-2476 — CVSS 10.0 (critical): The Java Management Extensions (JMX) implementation in Sun Java SE 6 before Update 15, and OpenJDK, does not properly enforce OpenType…
CVE-2009-2689 — CVSS 10.0 (critical): JDK13Services.getProviders in Sun Java SE 5.0 before Update 20 and 6 before Update 15, and OpenJDK, grants full privileges to instances of…
CVE-2009-2723 — CVSS 10.0 (critical): Unspecified vulnerability in deserialization in the Provider class in Sun Java SE 5.0 before Update 20 has unknown impact and attack…
CVE-2009-2722 — CVSS 10.0 (critical): Multiple unspecified vulnerabilities in the Provider class in Sun Java SE 5.0 before Update 20 have unknown impact and attack vectors, aka…
CVE-2009-2724 — CVSS 9.3 (critical): Race condition in the java.lang package in Sun Java SE 5.0 before Update 20 has unknown impact and attack vectors, related to a "3Y Race…
CVE-2009-2475 — CVSS 7.8 (high): Sun Java SE 5.0 before Update 20 and 6 before Update 15, and OpenJDK, might allow context-dependent attackers to obtain sensitive…
CVE-2009-2716 — CVSS 7.5 (high): The plugin functionality in Sun Java SE 6 before Update 15 does not properly implement version selection, which allows context-dependent…
CVE-2009-2717 — CVSS 6.8 (medium): The Abstract Window Toolkit (AWT) implementation in Sun Java SE 6 before Update 15 on Windows 2000 Professional does not provide a Security…
CVE-2009-2718 — CVSS 6.8 (medium): The Abstract Window Toolkit (AWT) implementation in Sun Java SE 6 before Update 15 on X11 does not impose the intended constraint on…
CVE-2009-2676 — CVSS 6.8 (medium): Unspecified vulnerability in JNLPAppletlauncher in Sun Java SE, and SE for Business, in JDK and JRE 6 Update 14 and earlier and JDK and JRE…
CVE-2009-2719 — CVSS 5.0 (medium): The Java Web Start implementation in Sun Java SE 6 before Update 15 allows context-dependent attackers to cause a denial of service…
CVE-2009-2720 — CVSS 5.0 (medium): Unspecified vulnerability in the javax.swing.plaf.synth.SynthContext.isSubregion method in the Swing implementation in Sun Java SE 6 before…
CVE-2009-2690 — CVSS 5.0 (medium): The encoder in Sun Java SE 6 before Update 15, and OpenJDK, grants read access to private variables with unspecified names, which allows…