IBM has acknowledged multiple vulnerabilities in IBM Java
IBM Java 7.x
Vulnerabilities can be exploited by malicious users to disclose certain information and by malicious people to disclose potentially sensitive information, hijack a user's session, conduct DNS cache poisoning attacks, manipulate certain data, cause a DoS (Denial of Service), and compromise a vulnerable system.
IBM released a patch to address vulerabilities in IBM Java 7. IBM 7 SR1 is available for download.
Manipulation of data
Exposure of sensitive information
The IBM patch is available at the IBM downloads page.