CVE-2014-0387
7.6 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
4.4 Medium
AI Score
Confidence
High
0.014 Low
EPSS
Percentile
86.8%
Unspecified vulnerability in Oracle Java SE 6u65 and Java SE 7u45, when running on Firefox, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.
Affected configurations
| CPE | Name | Operator | Version |
|---|---|---|---|
| oracle:jdk | oracle jdk | eq | 1.6.0 |
| oracle:jre | oracle jre | eq | 1.6.0 |
| oracle:jre | oracle jre | eq | 1.7.0 |
References
lists.opensuse.org/opensuse-security-announce/2014-02/msg00009.html
lists.opensuse.org/opensuse-security-announce/2014-02/msg00012.html
lists.opensuse.org/opensuse-security-announce/2014-03/msg00024.html
marc.info/?l=bugtraq&m=139402697611681&w=2
marc.info/?l=bugtraq&m=139402749111889&w=2
osvdb.org/102002
rhn.redhat.com/errata/RHSA-2014-0030.html
rhn.redhat.com/errata/RHSA-2014-0134.html
rhn.redhat.com/errata/RHSA-2014-0135.html
secunia.com/advisories/56485
secunia.com/advisories/56535
www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html
www.securityfocus.com/bid/64758
www.securityfocus.com/bid/64882
www.securitytracker.com/id/1029608
access.redhat.com/errata/RHSA-2014:0414
h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04166777
Related
7.6 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
4.4 Medium
AI Score
Confidence
High
0.014 Low
EPSS
Percentile
86.8%