CVE-2012-1720

low

Published 2012-06-16 · Modified 2026-04-29

CVSS v3

—

CVSS v2

3.7

VIR risk

3.7

Description

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.2_37 and earlier, when running on Solaris, allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Networking.

Predictions

Exploit likelihood

20%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: secalert_us@oracle.com — http://www.oracle.com/technetwork/topics/security/javacpujun2012-1515912.html

Application impact

Vendor	Product	Versions
oracle	jdk	`{"endIncluding":"1.7.0"}`
oracle	jre	`{"endIncluding":"1.7.0"}`
sun	jdk	`{"endIncluding":"1.5.0"}`
sun	jre	`{"endIncluding":"1.5.0"}`

References

http://marc.info/?l=bugtraq&m=134496371727681&w=2
http://secunia.com/advisories/51080
http://www.ibm.com/support/docview.wss?uid=swg21615246
http://www.mandriva.com/security/advisories?name=MDVSA-2013:150
http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html
http://www.oracle.com/technetwork/topics/security/javacpujun2012-1515912.html
http://www.securityfocus.com/bid/53956
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16581
http://marc.info/?l=bugtraq&m=134496371727681&w=2
http://secunia.com/advisories/51080
http://www.ibm.com/support/docview.wss?uid=swg21615246
http://www.mandriva.com/security/advisories?name=MDVSA-2013:150
http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html
http://www.oracle.com/technetwork/topics/security/javacpujun2012-1515912.html
http://www.securityfocus.com/bid/53956
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16581

Verify integrity in audit chain (admin only). AS-IS.