VYPR
Unrated severityNVD Advisory· Published May 14, 2014· Updated Jun 16, 2026

CVE-2011-2513

CVE-2011-2513

Description

The Java Network Launching Protocol (JNLP) implementation in IcedTea6 1.9.x before 1.9.9 and before 1.8.9, and IcedTea-Web 1.1.x before 1.1.1 and before 1.0.4, allows remote attackers to obtain the username and full path of the home and cache directories by accessing properties of the ClassLoader.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

24
  • Red Hat/Icedtea17 versions
    cpe:2.3:a:redhat:icedtea6:*:*:*:*:*:*:*:*+ 16 more
    • cpe:2.3:a:redhat:icedtea6:*:*:*:*:*:*:*:*range: <=1.8.8
    • cpe:2.3:a:redhat:icedtea6:1.8:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:icedtea6:1.8.1:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:icedtea6:1.8.2:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:icedtea6:1.8.3:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:icedtea6:1.8.4:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:icedtea6:1.8.5:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:icedtea6:1.8.6:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:icedtea6:1.8.7:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:icedtea6:1.9.1:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:icedtea6:1.9.2:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:icedtea6:1.9.3:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:icedtea6:1.9.4:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:icedtea6:1.9.5:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:icedtea6:1.9.6:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:icedtea6:1.9.7:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:icedtea6:1.9.8:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:icedtea-web:*:*:*:*:*:*:*:*+ 4 more
    • cpe:2.3:a:redhat:icedtea-web:*:*:*:*:*:*:*:*range: <=1.0.3
    • cpe:2.3:a:redhat:icedtea-web:1.0:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:icedtea-web:1.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:icedtea-web:1.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:icedtea-web:1.1:*:*:*:*:*:*:*
  • Range: 1.1.x < 1.1.1, 1.0.x < 1.0.4
  • IcedTea/IcedTea6llm-fuzzy
    Range: 1.9.x < 1.9.9, 1.8.x < 1.8.9

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.