{ "CVE_data_meta" : { "ASSIGNER" : "cve@mitre.org", "ID" : "CVE-2012-4820", "STATE" : "PUBLIC" }, "affects" : { "vendor" : { "vendor_data" : [ { "product" : { "product_data" : [ { "product_name" : "n/a", "version" : { "version_data" : [ { "version_value" : "n/a" } ] } } ] }, "vendor_name" : "n/a" } ] } }, "data_format" : "MITRE", "data_type" : "CVE", "data_version" : "4.0", "description" : { "description_data" : [ { "lang" : "eng", "value" : "Unspecified vulnerability in the JRE component in IBM Java 7 SR2 and earlier, Java 6.0.1 SR3 and earlier, Java 6 SR11 and earlier, Java 5 SR14 and earlier, and Java 142 SR13 FP13 and earlier; as used in IBM Rational Host On-Demand, Rational Change, Tivoli Monitoring, Smart Analytics System 5600, Tivoli Remote Control 5.1.2, WebSphere Real Time, Lotus Notes & Domino, Tivoli Storage Productivity Center, and Service Deliver Manager; and other products from other vendors such as Red Hat, when running under a security manager, allows remote attackers to gain privileges by modifying or removing the security manager via vectors related to \"insecure use of the java.lang.reflect.Method invoke() method.\"" } ] }, "problemtype" : { "problemtype_data" : [ { "description" : [ { "lang" : "eng", "value" : "n/a" } ] } ] }, "references" : { "reference_data" : [ { "url" : "http://seclists.org/bugtraq/2012/Sep/38" }, { "url" : "http://www-01.ibm.com/support/docview.wss?uid=swg21615705" }, { "url" : "http://www-01.ibm.com/support/docview.wss?uid=swg21615800" }, { "url" : "http://www-01.ibm.com/support/docview.wss?uid=swg21616490" }, { "url" : "http://www-01.ibm.com/support/docview.wss?uid=swg21616594" }, { "url" : "http://www-01.ibm.com/support/docview.wss?uid=swg21616616" }, { "url" : "http://www-01.ibm.com/support/docview.wss?uid=swg21616617" }, { "url" : "http://www-01.ibm.com/support/docview.wss?uid=swg21616652" }, { "url" : "http://www-01.ibm.com/support/docview.wss?uid=swg21616708" }, { "url" : "http://www-01.ibm.com/support/docview.wss?uid=swg21621154" }, { "url" : "https://www-304.ibm.com/support/docview.wss?uid=swg21616546" }, { "url" : "http://www-01.ibm.com/support/docview.wss?uid=swg21631786" }, { "url" : "http://www-01.ibm.com/support/docview.wss?uid=swg1IV29654" }, { "url" : "http://rhn.redhat.com/errata/RHSA-2012-1465.html" }, { "url" : "http://rhn.redhat.com/errata/RHSA-2012-1466.html" }, { "url" : "http://rhn.redhat.com/errata/RHSA-2012-1467.html" }, { "url" : "http://rhn.redhat.com/errata/RHSA-2013-1455.html" }, { "url" : "http://rhn.redhat.com/errata/RHSA-2013-1456.html" }, { "url" : "http://www.securityfocus.com/bid/55495" }, { "url" : "http://secunia.com/advisories/51634" }, { "url" : "http://secunia.com/advisories/51326" }, { "url" : "http://secunia.com/advisories/51327" }, { "url" : "http://secunia.com/advisories/51328" }, { "url" : "http://secunia.com/advisories/51393" }, { "url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/78764" } ] } }