CVE-2014-2490

2014-07-1705:10:00

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

cve-2014-2490

oracle

java

vulnerability

confidentiality

integrity

availability

nvd

5.6 Medium

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.02 Low

EPSS

Percentile

88.9%

JSON

Unspecified vulnerability in the Java SE component in Oracle Java SE 7u60 and SE 8u5 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.

CPENameOperatorVersion
hp:hp-uxhp hp-uxeqb.11.31
hp:hp-uxhp hp-uxeqb.11.23
debian:debian_linuxdebian debian linuxeq7.0
oracle:jdkoracle jdkeq1.8.0
oracle:jdkoracle jdkeq1.7.0
oracle:jreoracle jreeq1.8.0
oracle:jreoracle jreeq1.7.0

CPE	Name	Operator	Version
hp:hp-ux	hp hp-ux	eq	b.11.31
hp:hp-ux	hp hp-ux	eq	b.11.23
debian:debian_linux	debian debian linux	eq	7.0
oracle:jdk	oracle jdk	eq	1.8.0
oracle:jdk	oracle jdk	eq	1.7.0
oracle:jre	oracle jre	eq	1.8.0
oracle:jre	oracle jre	eq	1.7.0