CVE-2014-2490

EPSS 3.1%
Veröffentlicht 17.07.2014 05:10:14
Zuletzt bearbeitet 12.04.2025 10:46:40
Quelle secalert_us@oracle.com
CVE-Watchlists
Login
Unerledigt
Login

Unspecified vulnerability in the Java SE component in Oracle Java SE 7u60 and SE 8u5 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 17

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Hp ≫ Hp-ux Versionb.11.23

Hp ≫ Hp-ux Versionb.11.31

Debian ≫ Debian Linux Version7.0

Oracle ≫ Jdk Version1.7.0 Updateupdate60

Oracle ≫ Jdk Version1.8.0 Updateupdate5

Oracle ≫ Jre Version1.7.0 Updateupdate60

Oracle ≫ Jre Version1.8.0 Updateupdate5

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	3.1%	0.863

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	9.3	8.6	10	AV:N/AC:M/Au:N/C:C/I:C/A:C

http://seclists.org/fulldisclosure/2014/Dec/23

Third Party Advisory

Mailing List

http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html

Vendor Advisory

http://www.securityfocus.com/archive/1/534161/100/0/threaded

http://www.vmware.com/security/advisories/VMSA-2014-0012.html

Third Party Advisory

http://marc.info/?l=bugtraq&m=140852886808946&w=2

Third Party Advisory

http://security.gentoo.org/glsa/glsa-201502-12.xml

Third Party Advisory

http://secunia.com/advisories/60485

http://secunia.com/advisories/60812

http://www.debian.org/security/2014/dsa-2987

Third Party Advisory

http://www.securitytracker.com/id/1030577

https://access.redhat.com/errata/RHSA-2014:0902

http://secunia.com/advisories/60129

http://www.debian.org/security/2014/dsa-2980

Third Party Advisory

http://www.securityfocus.com/bid/68645

https://nvd.nist.gov/vuln/detail/CVE-2014-2490

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2014-2490

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2014-2490

EUVD