CVE-2020-2764

Name of the Vulnerable Software and Affected Versions Java Advanced Management Console version 2.16

Description The issue is related to inadequate access control in the Advanced Management Console component of the Java SE product. It allows an unauthenticated attacker with network access via multiple protocols to compromise Java SE, resulting in unauthorized read access to a subset of Java SE accessible data. This can be exploited by supplying data to APIs in the specified component without using untrusted applications.

Recommendations For Java Advanced Management Console version 2.16, consider restricting access to the affected APIs as a temporary workaround until a patch is available. Additionally, ensure that only trusted Java Web Start applications and Java applets are used to minimize the risk of exploitation.