CVE-2013-5850

critical

Published 2013-10-16 · Modified 2026-04-29

CVSS v3

—

VIR risk

9.3

Description

Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-5842.

Predictions

Exploit likelihood

20%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

No vendor mitigations ingested yet for this CVE. The mitigation-content worker queues fetches as references arrive — check back in a few minutes, or see the references list below.

Application impact

Vendor	Product	Versions
oracle	jre	`{"endIncluding":"1.6.0"}`
oracle	jre	`1.6.0`
sun	jre	`1.6.0`
oracle	jdk	`{"endIncluding":"1.6.0"}`
oracle	jdk	`1.6.0`
sun	jdk	`1.6.0`
oracle	jre	`1.7.0`
oracle	jre	`1.5.0`
sun	jre	`1.5.0`
oracle	jdk	`1.7.0`
oracle	jdk	`1.5.0`
sun	jdk	`1.5.0`

References

💬 Discuss CVE-2013-5850 on VIR Community →

Community-verified mitigations for this CVE will appear above when contributors publish them.

Verify integrity in audit chain (admin only). AS-IS.