CVE-2012-1723 — Oracle Java SE Runtime Environment (JRE) Arbitrary Code Execution Vulnerability

2022-03-03 • CISA Known Exploited Vulnerability

[event] Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE allows remote attackers to affect confidentiality, integrity, and availability via Unknown vectors related to Hotspot.

> AFFECTED SOFTWARE

Field	Value
Vendor	Oracle
Product	Java SE
CVE ID	CVE-2012-1723
Date Added	2022-03-03
Due Date	2022-03-24
Ransomware Campaign	Known — this vulnerability has been leveraged in ransomware campaigns

> MITIGATION

Apply updates per vendor instructions.

Due Date: 2022-03-24

> REFERENCES

[1] https://nvd.nist.gov/vuln/detail/CVE-2012-1723