CVE-2015-0410

Unspecified vulnerability in the Java SE, Java SE Embedded, JRockit component in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25; Java SE Embedded 7u71 and 8u6; and JRockit R27.8.4 and R28.3.4 allows remote attackers to affect availability via unknown vectors related to Security...

CVE-2014-6593

CVE-2014-6593 is an OpenJDK/JSSE issue where ChangeCipherSpec handling during SSL/TLS handshakes could allow remote attackers to impact confidentiality and integrity. Connected advisories confirm multiple distributions patched this vulnerability (e.g., Debian openjdk-6/7 updates; Red Hat/CentOS O...

CVE-2014-6591

Unspecified vulnerability in the Java SE component in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality via unknown vectors related to 2D, a different vulnerability than CVE-2014-6585...

CVE-2015-0410

Unspecified vulnerability in the Java SE, Java SE Embedded, JRockit component in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25; Java SE Embedded 7u71 and 8u6; and JRockit R27.8.4 and R28.3.4 allows remote attackers to affect availability via unknown vectors related to Security...

UBUNTU-CVE-2015-0395

Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot...

Oracle Releases January 2015 Security Advisory

Oracle has released its Critical Patch Update for January 2015 to address 169 vulnerabilities across multiple products. This update contains the following security fixes: 8 for Oracle Database Server 36 for Oracle Fusion Middleware 10 for Oracle Enterprise Manager Grid Control 10 for Oracle...

JDK: unspecified vulnerability fixed in 7u71 and 8u25 (Deployment)

Unspecified vulnerability in Oracle Java SE 7u67 and 8u20 allows remote attackers to affect integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2014-6476...

OpenJDK: insufficient ResourceBundle name check (Libraries, 8044274)

Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20, and Java SE Embedded 7u60, allows remote attackers to affect confidentiality via unknown vectors related to Libraries...

Design/Logic Flaw

Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20; Java SE Embedded 7u60; and Jrockit R27.8.3 and R28.3.3 allows remote attackers to affect confidentiality via vectors related to JAXP...

CVE-2014-6503

Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2014-4288, CVE-2014-6493, and CVE-2014-6532...

CVE-2014-6531

Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20, and Java SE Embedded 7u60, allows remote attackers to affect confidentiality via unknown vectors related to Libraries...

CVE-2014-6502

CVE-2014-6502 is a Libraries‑component vulnerability in Oracle Java SE (affecting 5.0u71, 6u81, 7u67, 8u20 and Java SE Embedded 7u60). The IBM bulletins corroborate a low‑to‑moderate impact with CVSS base score 2.6 (vector AV:N/AC:H/Au:N/C:N/I:P/A:N). Exploitation details are not described in the...

CVE-2014-6504

CVE-2014-6504 is described as an unspecified vulnerability in the Hotspot component that could allow a remote attacker to obtain sensitive information. In the connected IBM advisories, this CVE is listed among multiple Java vulnerabilities shipped with IBM SDK/JAVA in WebSphere and Tivoli/TPC pro...

CVE-2014-6512

CVE-2014-6512 is an unspecified vulnerability in the Libraries component of IBM/Oracle Java SDKs (IBM SDK/JAVA 5.0, 6, 7) and OpenJDK/OpenJRE family referenced in IBM security advisories. The IBM bulletins for WebSphere Application Server, WebSphere Business Services Fabric, and related IBM produ...

CVE-2014-6527

CVE-2014-6527 is an Oracle Java SE vulnerability affecting the Deployment component with no confidentiality impact, partial integrity impact, and no availability impact. Base score 2.6 (LOW). IBM advisories map this CVE to multiple products (e.g., IBM Java SDK/JRE in WebSphere-related offerings) ...

CVE-2014-6519

CVE-2014-6519 – Unspecified vulnerability in Oracle Java SE 7u67, 8u20 and Java SE Embedded 7u60, in the Hotspot component, with no confidentiality impact, but partial integrity impact and no availability impact. Public exploitation details are not provided in the supplied documents. Remediation ...

CVE-2014-6456

Unspecified vulnerability in Oracle Java SE 7u67 and 8u20 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors...

CVE-2014-6485

Unspecified vulnerability in Oracle Java SE 8u20 and JavaFX 2.2.65 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors...

CVE-2014-6458

CVE-2014-6458 is an Oracle Java SE deployment‑component vulnerability affecting 6u81, 7u67 and 8u20 (and related IBM/JDK bundles). It is described as unspecified with impact to confidentiality, integrity, and availability. Exploitation details are not provided in the supplied documents. Remediati...

CVE-2014-6485

CVE-2014-6485 affects Oracle Java SE 8u20 and JavaFX 2.2.65. Described as an unspecified vulnerability enabling remote access to confidentiality, integrity, and availability via unknown vectors. Connected sources (NVD, OpenVAS) confirm the CVE and generic impact; no concrete exploit details or af...