ID CVE-2014-6476
Summary Unspecified vulnerability in Oracle Java SE 7u67 and 8u20 allows remote attackers to affect integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2014-6527.
References
Vulnerable Configurations
  • cpe:2.3:a:oracle:jdk:1.7.0:update_67:*:*:*:*:*:*
    cpe:2.3:a:oracle:jdk:1.7.0:update_67:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jdk:1.8.0:update_20:*:*:*:*:*:*
    cpe:2.3:a:oracle:jdk:1.8.0:update_20:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jre:1.7.0:update_67:*:*:*:*:*:*
    cpe:2.3:a:oracle:jre:1.7.0:update_67:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jre:1.8.0:update_20:*:*:*:*:*:*
    cpe:2.3:a:oracle:jre:1.8.0:update_20:*:*:*:*:*:*
CVSS
Base: 5.0 (as of 17-03-2015 - 02:00)
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE PARTIAL NONE
cvss-vector via4 AV:N/AC:L/Au:N/C:N/I:P/A:N
redhat via4
advisories
  • rhsa
    id RHSA-2014:1657
  • rhsa
    id RHSA-2014:1876
  • rhsa
    id RHSA-2014:1880
  • rhsa
    id RHSA-2014:1882
refmap via4
bid 70531
confirm
gentoo GLSA-201502-12
hp
  • HPSBUX03218
  • SSRT101770
secunia
  • 61164
  • 61609
suse
  • SUSE-SU-2014:1526
  • SUSE-SU-2014:1549
  • SUSE-SU-2015:0344
Last major update 17-03-2015 - 02:00
Published 15-10-2014 - 15:55
Back to Top