VYPR

jarsigner

by Openjdk

CVEs (1)

  • CVE-2013-4578MedDec 29, 2017
    risk 0.35cvss 5.3epss 0.02

    jarsigner in OpenJDK and Oracle Java SE before 7u51 allows remote attackers to bypass a code-signing protection mechanism and inject unsigned bytecode into a signed JAR file by leveraging improper file validation.