4

CVE-2014-6593

Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25; Java SE Embedded 7u71 and 8u6; and JRockit 27.8.4 and 28.3.4 allows remote attackers to affect confidentiality and integrity via vectors related to JSSE.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
OracleJrockit Versionr27.8.4
OracleJrockit Versionr28.3.4
OracleJdk Version1.5.0 Updateupdate75
OracleJdk Version1.6.0 Updateupdate85
OracleJdk Version1.7.0 Updateupdate71
OracleJdk Version1.7.0 Updateupdate72
OracleJdk Version1.8.0 Updateupdate25
OracleJdk Version1.8.0 Updateupdate6
OracleJre Version1.5.0 Updateupdate75
OracleJre Version1.6.0 Updateupdate85
OracleJre Version1.7.0 Updateupdate71
OracleJre Version1.7.0 Updateupdate72
OracleJre Version1.8.0 Updateupdate25
OracleJre Version1.8.0 Updateupdate6
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 67.23% 0.992
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4 4.9 4.9
AV:N/AC:H/Au:N/C:P/I:P/A:N
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html
Patch
Vendor Advisory
http://rhn.redhat.com/errata/RHSA-2015-0264.html
http://h20564.www2.hp.com/hpsc/doc/public/display?docId=emr_na-c04583581
http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00001.html
http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00024.html
http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00018.html
http://marc.info/?l=bugtraq&m=142496355704097&w=2
http://marc.info/?l=bugtraq&m=142607790919348&w=2
http://rhn.redhat.com/errata/RHSA-2015-0068.html
http://rhn.redhat.com/errata/RHSA-2015-0079.html
http://rhn.redhat.com/errata/RHSA-2015-0080.html
http://rhn.redhat.com/errata/RHSA-2015-0085.html
http://rhn.redhat.com/errata/RHSA-2015-0086.html
http://www.debian.org/security/2015/dsa-3144
http://www.debian.org/security/2015/dsa-3147
http://www.ubuntu.com/usn/USN-2486-1
http://www.ubuntu.com/usn/USN-2487-1
http://www.vmware.com/security/advisories/VMSA-2015-0003.html
https://kc.mcafee.com/corporate/index?page=content&id=SB10104
https://security.gentoo.org/glsa/201507-14
http://www.securitytracker.com/id/1031580
https://www-304.ibm.com/support/docview.wss?uid=swg21695474
http://rhn.redhat.com/errata/RHSA-2015-0136.html
https://security.gentoo.org/glsa/201603-14
http://packetstormsecurity.com/files/134251/Java-Secure-Socket-Extension-JSSE-SKIP-TLS.html
http://www.securityfocus.com/bid/72169
https://www.exploit-db.com/exploits/38641/