Lucene search

[email protected]NVD:CVE-2014-4244

HistoryJul 17, 2014 - 11:17 a.m.

CVE-2014-4244

2014-07-1711:17:10

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:N/C:P/I:P/A:N

AI Score

Confidence

Low

EPSS

0.009

Percentile

82.5%

JSON

Unspecified vulnerability in Oracle Java SE 5.0u65, 6u75, 7u60, and 8u5, and JRockit R27.8.2 and JRockit R28.3.2, allows remote attackers to affect confidentiality and integrity via unknown vectors related to Security.

Affected configurations

Nvd

Node

oraclejdkMatch1.5.0update65

oraclejdkMatch1.6.0update75

oraclejdkMatch1.7.0update60

oraclejdkMatch1.8.0update5

oraclejreMatch1.5.0update65

oraclejreMatch1.6.0update75

oraclejreMatch1.7.0update60

oraclejreMatch1.8.0update5

Node

oraclejrockitMatchr27.8.2

oraclejrockitMatchr28.3.2

VendorProductVersionCPE
oraclejdk1.5.0cpe:2.3:a:oracle:jdk:1.5.0:update65:*:*:*:*:*:*
oraclejdk1.6.0cpe:2.3:a:oracle:jdk:1.6.0:update75:*:*:*:*:*:*
oraclejdk1.7.0cpe:2.3:a:oracle:jdk:1.7.0:update60:*:*:*:*:*:*
oraclejdk1.8.0cpe:2.3:a:oracle:jdk:1.8.0:update5:*:*:*:*:*:*
oraclejre1.5.0cpe:2.3:a:oracle:jre:1.5.0:update65:*:*:*:*:*:*
oraclejre1.6.0cpe:2.3:a:oracle:jre:1.6.0:update75:*:*:*:*:*:*
oraclejre1.7.0cpe:2.3:a:oracle:jre:1.7.0:update60:*:*:*:*:*:*
oraclejre1.8.0cpe:2.3:a:oracle:jre:1.8.0:update5:*:*:*:*:*:*
oraclejrockitr27.8.2cpe:2.3:a:oracle:jrockit:r27.8.2:*:*:*:*:*:*:*
oraclejrockitr28.3.2cpe:2.3:a:oracle:jrockit:r28.3.2:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
oracle	jdk	1.5.0	cpe:2.3:a:oracle:jdk:1.5.0:update65::::::
oracle	jdk	1.6.0	cpe:2.3:a:oracle:jdk:1.6.0:update75::::::
oracle	jdk	1.7.0	cpe:2.3:a:oracle:jdk:1.7.0:update60::::::
oracle	jdk	1.8.0	cpe:2.3:a:oracle:jdk:1.8.0:update5::::::
oracle	jre	1.5.0	cpe:2.3:a:oracle:jre:1.5.0:update65::::::
oracle	jre	1.6.0	cpe:2.3:a:oracle:jre:1.6.0:update75::::::
oracle	jre	1.7.0	cpe:2.3:a:oracle:jre:1.7.0:update60::::::
oracle	jre	1.8.0	cpe:2.3:a:oracle:jre:1.8.0:update5::::::
oracle	jrockit	r27.8.2	cpe:2.3:a:oracle:jrockit:r27.8.2:::::::*
oracle	jrockit	r28.3.2	cpe:2.3:a:oracle:jrockit:r28.3.2:::::::*

References

lists.opensuse.org/opensuse-security-announce/2015-02/msg00026.html

lists.opensuse.org/opensuse-security-announce/2015-02/msg00033.html

lists.opensuse.org/opensuse-security-announce/2015-02/msg00036.html

marc.info/?l=bugtraq&m=140852886808946&w=2

marc.info/?l=bugtraq&m=140852974709252&w=2

rhn.redhat.com/errata/RHSA-2015-0264.html

seclists.org/fulldisclosure/2014/Dec/23

secunia.com/advisories/58830

secunia.com/advisories/59404

secunia.com/advisories/59503

secunia.com/advisories/59680

secunia.com/advisories/59924

secunia.com/advisories/59985

secunia.com/advisories/59986

secunia.com/advisories/59987

secunia.com/advisories/60002

secunia.com/advisories/60031

secunia.com/advisories/60032

secunia.com/advisories/60081

secunia.com/advisories/60129

secunia.com/advisories/60245

secunia.com/advisories/60317

secunia.com/advisories/60326

secunia.com/advisories/60335

secunia.com/advisories/60485

secunia.com/advisories/60497

secunia.com/advisories/60622

secunia.com/advisories/60812

secunia.com/advisories/60817

secunia.com/advisories/60831

secunia.com/advisories/60846

secunia.com/advisories/60890

secunia.com/advisories/61050

secunia.com/advisories/61215

secunia.com/advisories/61254

secunia.com/advisories/61264

secunia.com/advisories/61278

secunia.com/advisories/61293

secunia.com/advisories/61294

secunia.com/advisories/61417

secunia.com/advisories/61469

secunia.com/advisories/61577

secunia.com/advisories/61640

secunia.com/advisories/61846

secunia.com/advisories/62314

security.gentoo.org/glsa/glsa-201502-12.xml

www-01.ibm.com/support/docview.wss?uid=swg21680334

www-01.ibm.com/support/docview.wss?uid=swg21681379

www-01.ibm.com/support/docview.wss?uid=swg21681966

www-01.ibm.com/support/docview.wss?uid=swg21683338

www-01.ibm.com/support/docview.wss?uid=swg21683429

www-01.ibm.com/support/docview.wss?uid=swg21683438

www-01.ibm.com/support/docview.wss?uid=swg21683484

www-01.ibm.com/support/docview.wss?uid=swg21685121

www-01.ibm.com/support/docview.wss?uid=swg21685122

www-01.ibm.com/support/docview.wss?uid=swg21685178

www-01.ibm.com/support/docview.wss?uid=swg21685242

www-01.ibm.com/support/docview.wss?uid=swg21686142

www-01.ibm.com/support/docview.wss?uid=swg21686383

www-01.ibm.com/support/docview.wss?uid=swg21686824

www-01.ibm.com/support/docview.wss?uid=swg21688893

www-01.ibm.com/support/docview.wss?uid=swg21689593

www.debian.org/security/2014/dsa-2980

www.debian.org/security/2014/dsa-2987

www.ibm.com/support/docview.wss?uid=swg21683518

www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html

www.securityfocus.com/archive/1/534161/100/0/threaded

www.securityfocus.com/bid/68624

www.securitytracker.com/id/1030577

www.vmware.com/security/advisories/VMSA-2014-0012.html

access.redhat.com/errata/RHSA-2014:0902

access.redhat.com/errata/RHSA-2014:0908

exchange.xforce.ibmcloud.com/vulnerabilities/94605

kc.mcafee.com/corporate/index?page=content&id=SB10083

www.ibm.com/support/docview.wss?uid=swg21680418

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:N/C:P/I:P/A:N

AI Score

Confidence

Low

EPSS

0.009

Percentile

82.5%

JSON

Related for NVD:CVE-2014-4244

veracode1 ibm57 prion1 ubuntucve1 cvelist1 cve1 nessus46 openvas34 redhat10 oraclelinux3 amazon2 centos3 debian3 ubuntu4 mageia1 aix1 suse4 kaspersky1 osv1 gentoo1 securityvulns2 oracle1