9.3
CVE-2014-2483
- EPSS 5.23%
- Veröffentlicht 17.07.2014 05:10:14
- Zuletzt bearbeitet 06.05.2026 22:30:45
- Quelle secalert_us@oracle.com
- CVE-Watchlists
- Unerledigt
Unspecified vulnerability in the Java SE component in Oracle Java SE Java SE 7u60 and OpenJDK 7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2014-4223. NOTE: the previous information is from the July 2014 CPU. Oracle has not commented on another vendor's claim that the issue is related to improper restriction of the "use of privileged annotations."
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Debian ≫ Debian Linux Version7.0
Redhat ≫ Enterprise Linux Version5
Redhat ≫ Enterprise Linux Version6.0
Redhat ≫ Enterprise Linux Version7.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 5.23% | 0.914 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 9.3 | 8.6 | 10 |
AV:N/AC:M/Au:N/C:C/I:C/A:C
|
http://seclists.org/fulldisclosure/2014/Dec/23
http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html
http://www.securityfocus.com/archive/1/534161/100/0/threaded
http://www.vmware.com/security/advisories/VMSA-2014-0012.html
http://marc.info/?l=bugtraq&m=140852886808946&w=2
http://security.gentoo.org/glsa/glsa-201502-12.xml
http://hg.openjdk.java.net/jdk7u/jdk7u/hotspot/rev/848481af9003
http://secunia.com/advisories/60485
http://secunia.com/advisories/60812
http://www.debian.org/security/2014/dsa-2987
http://www.securityfocus.com/bid/68608
http://www.securitytracker.com/id/1030577
https://access.redhat.com/errata/RHSA-2014:0902
https://bugzilla.redhat.com/show_bug.cgi?id=1119626