{"id":"CVE-2020-2830","details":"Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Concurrency). Supported versions that are affected are Java SE: 7u251, 8u241, 11.0.6 and 14; Java SE Embedded: 8u241. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded. Note: Applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).","aliases":["BIT-java-2020-2830","BIT-java-min-2020-2830","BIT-jre-2020-2830"],"modified":"2026-05-15T12:03:45.277859114Z","published":"2020-04-15T14:15:29.950Z","related":["CGA-523p-fj67-frf8","SUSE-SU-2020:14391-1","SUSE-SU-2020:14398-1","SUSE-SU-2020:1511-1","SUSE-SU-2020:1511-2","SUSE-SU-2020:1569-1","SUSE-SU-2020:1569-2","SUSE-SU-2020:1571-1","SUSE-SU-2020:1572-1","SUSE-SU-2020:1683-1","SUSE-SU-2020:1684-1","SUSE-SU-2020:1685-1","SUSE-SU-2020:1686-1","openSUSE-SU-2020:0757-1","openSUSE-SU-2020:0800-1","openSUSE-SU-2024:10871-1","openSUSE-SU-2024:10872-1","openSUSE-SU-2024:10876-1"],"database_specific":{"unresolved_ranges":[{"source":"CPE_FIELD","vendor_product":"canonical:ubuntu_linux","extracted_events":[{"last_affected":"16.04"},{"last_affected":"18.04"},{"last_affected":"19.10"}],"cpes":["cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*","cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*","cpe:2.3:o:canonical:ubuntu_linux:19.10:*:*:*:*:*:*:*"]},{"source":"CPE_FIELD","vendor_product":"debian:debian_linux","cpes":["cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*","cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*"],"extracted_events":[{"last_affected":"8.0"},{"last_affected":"10.0"}]},{"source":"CPE_FIELD","vendor_product":"fedoraproject:fedora","extracted_events":[{"last_affected":"30"},{"last_affected":"31"},{"last_affected":"32"}],"cpes":["cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*","cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*","cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*"]},{"source":"CPE_FIELD","vendor_product":"mcafee:threat_intelligence_exchange_server","cpes":["cpe:2.3:a:mcafee:threat_intelligence_exchange_server:*:*:*:*:*:*:*:*","cpe:2.3:a:mcafee:threat_intelligence_exchange_server:2.3.1:-:*:*:*:*:*:*","cpe:2.3:a:mcafee:threat_intelligence_exchange_server:2.3.1:hotfix1:*:*:*:*:*:*","cpe:2.3:a:mcafee:threat_intelligence_exchange_server:2.3.1:hotfix2:*:*:*:*:*:*","cpe:2.3:a:mcafee:threat_intelligence_exchange_server:3.0.0:*:*:*:*:*:*:*"],"extracted_events":[{"introduced":"2.0.0"},{"fixed":"2.3.1"},{"last_affected":"2.3.1-NA"},{"last_affected":"2.3.1-hotfix1"},{"last_affected":"2.3.1-hotfix2"},{"last_affected":"3.0.0"}]},{"source":"CPE_FIELD","vendor_product":"netapp:active_iq_unified_manager","extracted_events":[{"introduced":"7.3"},{"introduced":"9.5"}],"cpes":["cpe:2.3:a:netapp:active_iq_unified_manager:*:*:*:*:*:vsphere:*:*","cpe:2.3:a:netapp:active_iq_unified_manager:*:*:*:*:*:windows:*:*"]},{"source":"CPE_FIELD","vendor_product":"netapp:e-series_santricity_os_controller","extracted_events":[{"introduced":"11.0.0"},{"last_affected":"11.60.1"}],"cpes":["cpe:2.3:a:netapp:e-series_santricity_os_controller:*:*:*:*:*:*:*:*"]},{"source":"CPE_FIELD","vendor_product":"netapp:storagegrid","extracted_events":[{"introduced":"9.0.0"},{"last_affected":"9.0.4"}],"cpes":["cpe:2.3:a:netapp:storagegrid:*:*:*:*:*:*:*:*"]},{"source":"CPE_FIELD","vendor_product":"opensuse:leap","extracted_events":[{"last_affected":"15.1"},{"last_affected":"15.2"}],"cpes":["cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*","cpe:2.3:o:opensuse:leap:15.2:*:*:*:*:*:*:*"]},{"source":"CPE_FIELD","vendor_product":"oracle:jdk","extracted_events":[{"last_affected":"1.7.0-update251"},{"last_affected":"1.8.0-update241"},{"last_affected":"11.0.6"},{"last_affected":"14.0.0"}],"cpes":["cpe:2.3:a:oracle:jdk:1.7.0:update251:*:*:*:*:*:*","cpe:2.3:a:oracle:jdk:1.8.0:update241:*:*:*:*:*:*","cpe:2.3:a:oracle:jdk:11.0.6:*:*:*:*:*:*:*","cpe:2.3:a:oracle:jdk:14.0.0:*:*:*:*:*:*:*"]},{"source":"CPE_FIELD","vendor_product":"oracle:jre","cpes":["cpe:2.3:a:oracle:jre:1.7.0:update_251:*:*:*:*:*:*","cpe:2.3:a:oracle:jre:1.8.0:update_241:*:*:*:*:*:*","cpe:2.3:a:oracle:jre:11.0.6:*:*:*:*:*:*:*","cpe:2.3:a:oracle:jre:14.0.0:*:*:*:*:*:*:*"],"extracted_events":[{"last_affected":"1.7.0-update_251"},{"last_affected":"1.8.0-update_241"},{"last_affected":"11.0.6"},{"last_affected":"14.0.0"}]},{"source":"CPE_FIELD","vendor_product":"oracle:openjdk","extracted_events":[{"introduced":"11"},{"last_affected":"11.0.6"},{"introduced":"11"},{"last_affected":"11.0.6"},{"introduced":"11"},{"last_affected":"11.0.6"},{"introduced":"13"},{"last_affected":"13.0.2"},{"introduced":"13"},{"last_affected":"13.0.2"},{"introduced":"13"},{"last_affected":"13.0.2"},{"last_affected":"7-NA"},{"last_affected":"7-NA"},{"last_affected":"7-NA"},{"last_affected":"7-update1"},{"last_affected":"7-update1"},{"last_affected":"7-update1"},{"last_affected":"7-update10"},{"last_affected":"7-update10"},{"last_affected":"7-update10"},{"last_affected":"7-update11"},{"last_affected":"7-update11"},{"last_affected":"7-update11"},{"last_affected":"7-update13"},{"last_affected":"7-update13"},{"last_affected":"7-update13"},{"last_affected":"7-update15"},{"last_affected":"7-update15"},{"last_affected":"7-update15"},{"last_affected":"7-update151"},{"last_affected":"7-update151"},{"last_affected":"7-update151"},{"last_affected":"7-update161"},{"last_affected":"7-update161"},{"last_affected":"7-update161"},{"last_affected":"7-update17"},{"last_affected":"7-update17"},{"last_affected":"7-update17"},{"last_affected":"7-update171"},{"last_affected":"7-update171"},{"last_affected":"7-update171"},{"last_affected":"7-update181"},{"last_affected":"7-update181"},{"last_affected":"7-update181"},{"last_affected":"7-update191"},{"last_affected":"7-update191"},{"last_affected":"7-update191"},{"last_affected":"7-update2"},{"last_affected":"7-update2"},{"last_affected":"7-update2"},{"last_affected":"7-update201"},{"last_affected":"7-update201"},{"last_affected":"7-update201"},{"last_affected":"7-update21"},{"last_affected":"7-update21"},{"last_affected":"7-update21"},{"last_affected":"7-update211"},{"last_affected":"7-update211"},{"last_affected":"7-update211"},{"last_affected":"7-update221"},{"last_affected":"7-update221"},{"last_affected":"7-update221"},{"last_affected":"7-update231"},{"last_affected":"7-update231"},{"last_affected":"7-update231"},{"last_affected":"7-update241"},{"last_affected":"7-update241"},{"last_affected":"7-update241"},{"last_affected":"7-update251"},{"last_affected":"7-update251"},{"last_affected":"7-update251"},{"last_affected":"7-update3"},{"last_affected":"7-update3"},{"last_affected":"7-update3"},{"last_affected":"7-update4"},{"last_affected":"7-update4"},{"last_affected":"7-update4"},{"last_affected":"7-update5"},{"last_affected":"7-update5"},{"last_affected":"7-update5"},{"last_affected":"7-update6"},{"last_affected":"7-update6"},{"last_affected":"7-update6"},{"last_affected":"7-update7"},{"last_affected":"7-update7"},{"last_affected":"7-update7"},{"last_affected":"7-update9"},{"last_affected":"7-update9"},{"last_affected":"7-update9"},{"last_affected":"8-NA"},{"last_affected":"8-NA"},{"last_affected":"8-NA"},{"last_affected":"8-update141"},{"last_affected":"8-update141"},{"last_affected":"8-update141"},{"last_affected":"8-update151"},{"last_affected":"8-update151"},{"last_affected":"8-update151"},{"last_affected":"8-update152"},{"last_affected":"8-update152"},{"last_affected":"8-update152"},{"last_affected":"8-update161"},{"last_affected":"8-update161"},{"last_affected":"8-update161"},{"last_affected":"8-update162"},{"last_affected":"8-update162"},{"last_affected":"8-update162"},{"last_affected":"8-update171"},{"last_affected":"8-update171"},{"last_affected":"8-update171"},{"last_affected":"8-update172"},{"last_affected":"8-update172"},{"last_affected":"8-update172"},{"last_affected":"8-update181"},{"last_affected":"8-update181"},{"last_affected":"8-update181"},{"last_affected":"8-update191"},{"last_affected":"8-update191"},{"last_affected":"8-update191"},{"last_affected":"8-update192"},{"last_affected":"8-update192"},{"last_affected":"8-update192"},{"last_affected":"8-update201"},{"last_affected":"8-update201"},{"last_affected":"8-update201"},{"last_affected":"8-update202"},{"last_affected":"8-update202"},{"last_affected":"8-update202"},{"last_affected":"8-update211"},{"last_affected":"8-update211"},{"last_affected":"8-update211"},{"last_affected":"8-update212"},{"last_affected":"8-update212"},{"last_affected":"8-update212"},{"last_affected":"8-update221"},{"last_affected":"8-update221"},{"last_affected":"8-update221"},{"last_affected":"8-update231"},{"last_affected":"8-update231"},{"last_affected":"8-update231"},{"last_affected":"8-update241"},{"last_affected":"8-update241"},{"last_affected":"8-update241"},{"last_affected":"8-update5"},{"last_affected":"8-update5"},{"last_affected":"8-update5"}],"cpes":["cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","cpe:2.3:a:oracle:openjdk:7:-:*:*:*:*:*:*","cpe:2.3:a:oracle:openjdk:7:update10:*:*:*:*:*:*","cpe:2.3:a:oracle:openjdk:7:update11:*:*:*:*:*:*","cpe:2.3:a:oracle:openjdk:7:update13:*:*:*:*:*:*","cpe:2.3:a:oracle:openjdk:7:update151:*:*:*:*:*:*","cpe:2.3:a:oracle:openjdk:7:update15:*:*:*:*:*:*","cpe:2.3:a:oracle:openjdk:7:update161:*:*:*:*:*:*","cpe:2.3:a:oracle:openjdk:7:update171:*:*:*:*:*:*","cpe:2.3:a:oracle:openjdk:7:update17:*:*:*:*:*:*","cpe:2.3:a:oracle:openjdk:7:update181:*:*:*:*:*:*","cpe:2.3:a:oracle:openjdk:7:update191:*:*:*:*:*:*","cpe:2.3:a:oracle:openjdk:7:update1:*:*:*:*:*:*","cpe:2.3:a:oracle:openjdk:7:update201:*:*:*:*:*:*","cpe:2.3:a:oracle:openjdk:7:update211:*:*:*:*:*:*","cpe:2.3:a:oracle:openjdk:7:update21:*:*:*:*:*:*","cpe:2.3:a:oracle:openjdk:7:update221:*:*:*:*:*:*","cpe:2.3:a:oracle:openjdk:7:update231:*:*:*:*:*:*","cpe:2.3:a:oracle:openjdk:7:update241:*:*:*:*:*:*","cpe:2.3:a:oracle:openjdk:7:update251:*:*:*:*:*:*","cpe:2.3:a:oracle:openjdk:7:update2:*:*:*:*:*:*","cpe:2.3:a:oracle:openjdk:7:update3:*:*:*:*:*:*","cpe:2.3:a:oracle:openjdk:7:update4:*:*:*:*:*:*","cpe:2.3:a:oracle:openjdk:7:update5:*:*:*:*:*:*","cpe:2.3:a:oracle:openjdk:7:update6:*:*:*:*:*:*","cpe:2.3:a:oracle:openjdk:7:update7:*:*:*:*:*:*","cpe:2.3:a:oracle:openjdk:7:update9:*:*:*:*:*:*","cpe:2.3:a:oracle:openjdk:8:-:*:*:*:*:*:*","cpe:2.3:a:oracle:openjdk:8:update141:*:*:*:*:*:*","cpe:2.3:a:oracle:openjdk:8:update151:*:*:*:*:*:*","cpe:2.3:a:oracle:openjdk:8:update152:*:*:*:*:*:*","cpe:2.3:a:oracle:openjdk:8:update161:*:*:*:*:*:*","cpe:2.3:a:oracle:openjdk:8:update162:*:*:*:*:*:*","cpe:2.3:a:oracle:openjdk:8:update171:*:*:*:*:*:*","cpe:2.3:a:oracle:openjdk:8:update172:*:*:*:*:*:*","cpe:2.3:a:oracle:openjdk:8:update181:*:*:*:*:*:*","cpe:2.3:a:oracle:openjdk:8:update191:*:*:*:*:*:*","cpe:2.3:a:oracle:openjdk:8:update192:*:*:*:*:*:*","cpe:2.3:a:oracle:openjdk:8:update201:*:*:*:*:*:*","cpe:2.3:a:oracle:openjdk:8:update202:*:*:*:*:*:*","cpe:2.3:a:oracle:openjdk:8:update211:*:*:*:*:*:*","cpe:2.3:a:oracle:openjdk:8:update212:*:*:*:*:*:*","cpe:2.3:a:oracle:openjdk:8:update221:*:*:*:*:*:*","cpe:2.3:a:oracle:openjdk:8:update231:*:*:*:*:*:*","cpe:2.3:a:oracle:openjdk:8:update241:*:*:*:*:*:*","cpe:2.3:a:oracle:openjdk:8:update5:*:*:*:*:*:*"]}]},"references":[{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CKAV6KFFAEANXAN73AFTGU7Z6YNRWCXQ/"},{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L7VHC4EW36KZEIDQ56RPCWBZCQELFFKN/"},{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NYHHHZRHXCBGRHGE5UP7UEB4IZ2QX536/"},{"type":"ADVISORY","url":"http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00000.html"},{"type":"ADVISORY","url":"http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00023.html"},{"type":"ADVISORY","url":"http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00048.html"},{"type":"ADVISORY","url":"https://lists.debian.org/debian-lts-announce/2020/04/msg00024.html"},{"type":"ADVISORY","url":"https://security.gentoo.org/glsa/202006-22"},{"type":"ADVISORY","url":"https://security.netapp.com/advisory/ntap-20200416-0004/"},{"type":"ADVISORY","url":"https://usn.ubuntu.com/4337-1/"},{"type":"ADVISORY","url":"https://www.debian.org/security/2020/dsa-4662"},{"type":"ADVISORY","url":"https://www.oracle.com/security-alerts/cpuapr2020.html"},{"type":"FIX","url":"https://kc.mcafee.com/corporate/index?page=content&id=SB10318"}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}]}