CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
Confidence
High
EPSS
Percentile
87.0%
Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20, and Java SE Embedded 7u60, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT.
Vendor | Product | Version | CPE |
---|---|---|---|
oracle | jdk | 1.6.0 | cpe:2.3:a:oracle:jdk:1.6.0:update81:*:*:*:*:*:* |
oracle | jdk | 1.7.0 | cpe:2.3:a:oracle:jdk:1.7.0:update60:*:*:*:*:*:* |
oracle | jre | 1.6.0 | cpe:2.3:a:oracle:jre:1.6.0:update_81:*:*:*:*:*:* |
oracle | jre | 1.7.0 | cpe:2.3:a:oracle:jre:1.7.0:update_67:*:*:*:*:*:* |
oracle | jre | 1.7.0 | cpe:2.3:a:oracle:jre:1.7.0:update60:*:*:*:*:*:* |
oracle | jre | 1.8.0 | cpe:2.3:a:oracle:jre:1.8.0:update_20:*:*:*:*:*:* |
lists.opensuse.org/opensuse-security-announce/2014-11/msg00013.html
lists.opensuse.org/opensuse-security-announce/2014-11/msg00021.html
lists.opensuse.org/opensuse-security-announce/2014-12/msg00002.html
lists.opensuse.org/opensuse-security-announce/2015-02/msg00026.html
lists.opensuse.org/opensuse-security-announce/2015-02/msg00027.html
lists.opensuse.org/opensuse-security-announce/2015-02/msg00036.html
marc.info/?l=bugtraq&m=141775382904016&w=2
secunia.com/advisories/61609
secunia.com/advisories/61629
security.gentoo.org/glsa/glsa-201502-12.xml
www-01.ibm.com/support/docview.wss?uid=swg21688283
www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html
www.securityfocus.com/bid/70569
www.ubuntu.com/usn/USN-2386-1
www.ubuntu.com/usn/USN-2388-1
www.ubuntu.com/usn/USN-2388-2
More