|CVSS SCORE||10, (AV:N/AC:L/Au:N/C:C/I:C/A:C)|
The specific flaw exists within the JavaFX WebPage class. A descendant class can overwrite the getPage method with a custom pointer into the native function. This could lead to remote code execution under the context of the process.
Oracle has issued an update to correct this vulnerability. More details can be found at: