PT-2020-4487 · Oracle+6 · Java Se+7

Published

2020-10-20

·

Updated

2026-05-08

·

CVE-2020-14803

CVSS v3.1

5.3

Medium

VectorAV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Name of the Vulnerable Software and Affected Versions Java SE versions 11.0.8 through 15
Description The issue is related to insufficient input validation in the Libraries component of Java SE, allowing an unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks can result in unauthorized read access to a subset of Java SE accessible data. This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code and rely on the Java sandbox for security.
Recommendations For Java SE versions 11.0.8 through 15, update to a version that includes the fix for this vulnerability. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

RCE

Time Of Check To Time Of Use

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-20CWE-367

Related Identifiers

BDU:2020-05035
BIT-JAVA-2020-14803
BIT-JAVA-MIN-2020-14803
BIT-JRE-2020-14803
CESA-2020_4305
CESA-2020_4307
CESA-2020_4347
CESA-2020_4348
CESA-2020_4350
CESA-2021_0736
CVE-2020-14803
DLA-2412-1
DLA-2412-2
DSA-4779-1
MGASA-2020-0418
OPENSUSE-SU-2020:1893-1
OPENSUSE-SU-2020:1984-1
OPENSUSE-SU-2020:1994-1
OPENSUSE-SU-2020:2048-1
OPENSUSE-SU-2020:2083-1
OPENSUSE-SU-2020_1893-1
OPENSUSE-SU-2020_1984-1
OPENSUSE-SU-2020_1994-1
OPENSUSE-SU-2020_2048-1
OPENSUSE-SU-2020_2083-1
OPENSUSE-SU-2021:0374-1
OPENSUSE-SU-2021_0374-1
OPENSUSE-SU-2024:10870-1
OPENSUSE-SU-2024:10871-1
OPENSUSE-SU-2024:10872-1
OPENSUSE-SU-2024:10873-1
OPENSUSE-SU-2024:10875-1
OPENSUSE-SU-2024:10876-1
OPENSUSE-SU-2025:0066-1
RHSA-2020:4305
RHSA-2020:4306
RHSA-2020:4307
RHSA-2020:4316
RHSA-2020:4347
RHSA-2020:4348
RHSA-2020:4349
RHSA-2020:4350
RHSA-2020:4352
RHSA-2020_4305
RHSA-2020_4307
RHSA-2020_4347
RHSA-2020_4348
RHSA-2020_4350
RHSA-2021:0717
RHSA-2021:0733
RHSA-2021:0736
RHSA-2021_0717
RHSA-2021_0733
RHSA-2021_0736
ROSA-SA-2023-2315
SUSE-SU-2020:14587-1
SUSE-SU-2020:14588-1
SUSE-SU-2020:3159-1
SUSE-SU-2020:3191-1
SUSE-SU-2020:3310-1
SUSE-SU-2020:3359-1
SUSE-SU-2020:3460-1
SUSE-SU-2020:3932-1
SUSE-SU-2020_14588-1
SUSE-SU-2021:0019-1
SUSE-SU-2021:0032-1
SUSE-SU-2021:0512-1
SUSE-SU-2021:0533-1
SUSE-SU-2021:0652-1
SUSE-SU-2021:0665-1
SUSE-SU-2021:0670-1
SUSE-SU-2021:14634-1
SUSE-SU-2021:14640-1
SUSE-SU-2021_0512-1
SUSE-SU-2021_0533-1
SUSE-SU-2021_0652-1
SUSE-SU-2021_0665-1
SUSE-SU-2021_0670-1
SUSE-SU-2021_14634-1
USN-4607-1
USN-4607-2

Affected Products

Centos
Ibm Aix
Java Platform
Java Se
Linuxmint
Red Hat
Suse
Ubuntu