ID CVE-2014-6456
Summary Unspecified vulnerability in Oracle Java SE 7u67 and 8u20 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.
References
Vulnerable Configurations
  • cpe:2.3:a:oracle:jdk:1.7.0:update_67:*:*:*:*:*:*
    cpe:2.3:a:oracle:jdk:1.7.0:update_67:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jdk:1.8.0:update_20:*:*:*:*:*:*
    cpe:2.3:a:oracle:jdk:1.8.0:update_20:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jre:1.7.0:update_67:*:*:*:*:*:*
    cpe:2.3:a:oracle:jre:1.7.0:update_67:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jre:1.8.0:update_20:*:*:*:*:*:*
    cpe:2.3:a:oracle:jre:1.8.0:update_20:*:*:*:*:*:*
CVSS
Base: 9.3 (as of 17-03-2015 - 02:00)
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:N/AC:M/Au:N/C:C/I:C/A:C
redhat via4
advisories
  • rhsa
    id RHSA-2014:1657
  • rhsa
    id RHSA-2014:1876
  • rhsa
    id RHSA-2014:1880
  • rhsa
    id RHSA-2014:1882
refmap via4
bid 70522
confirm
gentoo GLSA-201502-12
hp
  • HPSBUX03218
  • SSRT101770
secunia
  • 61164
  • 61609
suse
  • SUSE-SU-2014:1526
  • SUSE-SU-2014:1549
  • SUSE-SU-2015:0344
Last major update 17-03-2015 - 02:00
Published 15-10-2014 - 15:55
Back to Top