Jre
by Oracle
Standard maintenance is sufficient
Jre has low exploitation rates. Attackers rarely target this software's known vulnerabilities.
What to do
- Keep automatic updates enabled
- No urgent action needed
- Review periodically as part of normal maintenance
What Attackers Target
Vulnerabilities with high exploit probability
5.9%
Confirmed actively exploited (CISA)
4.0%
Public exploit code available
4.0%
Based on 353 known vulnerabilities. Percentages show the proportion that are actively dangerous — a low percentage means most vulnerabilities in this product are not being exploited.
Most Dangerous Vulnerabilities
| CVE | CVSS | Exploit Probability | Confirmed |
|---|---|---|---|
| CVE-2012-4681 | 9.8 | 94.1% | Yes |
| CVE-2012-1723 | 9.8 | 94.1% | Yes |
| CVE-2016-3427 | 9.8 | 94.0% | Yes |
| CVE-2015-4000 | 3.7 | 93.9% | — |
| CVE-2013-0422 | 9.8 | 93.6% | Yes |
| CVE-2012-0507 | 9.8 | 93.6% | Yes |
| CVE-2013-2423 | 3.7 | 93.4% | Yes |
| CVE-2013-2465 | 9.8 | 93.2% | Yes |
| CVE-2011-3544 | 9.8 | 92.5% | Yes |
| CVE-2010-0840 | 9.8 | 92.1% | Yes |
| CVE-2012-5076 | 9.8 | 91.7% | Yes |
| CVE-2013-0431 | 5.3 | 91.6% | Yes |
| CVE-2017-3241 | 9.0 | 76.8% | — |
| CVE-2015-2590 | 9.8 | 63.0% | Yes |
| CVE-2023-41993 | 8.8 | 24.4% | Yes |
| CVE-2016-9843 | 9.8 | 15.1% | — |
| CVE-2016-9841 | 9.8 | 13.5% | — |
| CVE-2016-0636 | 8.1 | 13.0% | — |
| CVE-2016-9840 | 8.8 | 13.0% | — |
| CVE-2016-9842 | 8.8 | 12.1% | — |
15
/ 100
low-risk
Active Threat
8/50 · Minimal
Exploit Availability
7/50 · Minimal
Score uses Wilson score intervals to account for sample size. Products with few CVEs are scored conservatively.