CVE-2014-0454

Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Security.

CVSS v2.0 7.5 HIGH

7.5^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 10.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://marc.info/?l=bugtraq&m=140852886808946&w=2	Issue Tracking Mailing List Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2014-0675.html	Third Party Advisory
http://secunia.com/advisories/58974	Third Party Advisory
http://security.gentoo.org/glsa/glsa-201502-12.xml	Third Party Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg21672080	Third Party Advisory
http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html	Vendor Advisory
http://www.securityfocus.com/bid/66905	Third Party Advisory VDB Entry
http://www.ubuntu.com/usn/USN-2187-1	Third Party Advisory
https://access.redhat.com/errata/RHSA-2014:0413	Third Party Advisory
https://www.ibm.com/support/docview.wss?uid=swg21675973	Third Party Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:canonical:ubuntu_linux:12.10:::::::*
	cpe:2.3:o:canonical:ubuntu_linux:13.10:::::::*
	cpe:2.3:o:canonical:ubuntu_linux:14.04::::esm:::

Configuration 2 (hide)

OR	cpe:2.3:a:oracle:jdk:1.7.0:update51::::::
	cpe:2.3:a:oracle:jdk:1.8.0:-::::::
	cpe:2.3:a:oracle:jre:1.7.0:update51::::::
	cpe:2.3:a:oracle:jre:1.8.0:-::::::

Configuration 3 (hide)

AND

OR	cpe:2.3:a:ibm:forms_viewer::::::::
	cpe:2.3:a:ibm:forms_viewer::::::::

cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

History

No history.

Information

Published : 2014-04-16 01:55

Updated : 2024-02-28 12:20

NVD link : CVE-2014-0454

Mitre link : CVE-2014-0454

CVE.ORG link : CVE-2014-0454

JSON object : View

Products Affected

oracle

jdk
jre

microsoft

windows

ibm

forms_viewer

canonical

ubuntu_linux

CWE

NVD-CWE-noinfo

{"id": "CVE-2014-0454", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2014-04-16T01:55:09.727", "references": [{"url": "http://marc.info/?l=bugtraq&m=140852886808946&w=2", "tags": ["Issue Tracking", "Mailing List", "Third Party Advisory"], "source": "secalert_us@oracle.com"}, {"url": "http://rhn.redhat.com/errata/RHSA-2014-0675.html", "tags": ["Third Party Advisory"], "source": "secalert_us@oracle.com"}, {"url": "http://secunia.com/advisories/58974", "tags": ["Third Party Advisory"], "source": "secalert_us@oracle.com"}, {"url": "http://security.gentoo.org/glsa/glsa-201502-12.xml", "tags": ["Third Party Advisory"], "source": "secalert_us@oracle.com"}, {"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21672080", "tags": ["Third Party Advisory"], "source": "secalert_us@oracle.com"}, {"url": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html", "tags": ["Vendor Advisory"], "source": "secalert_us@oracle.com"}, {"url": "http://www.securityfocus.com/bid/66905", "tags": ["Third Party Advisory", "VDB Entry"], "source": "secalert_us@oracle.com"}, {"url": "http://www.ubuntu.com/usn/USN-2187-1", "tags": ["Third Party Advisory"], "source": "secalert_us@oracle.com"}, {"url": "https://access.redhat.com/errata/RHSA-2014:0413", "tags": ["Third Party Advisory"], "source": "secalert_us@oracle.com"}, {"url": "https://www.ibm.com/support/docview.wss?uid=swg21675973", "tags": ["Third Party Advisory"], "source": "secalert_us@oracle.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Security."}, {"lang": "es", "value": "Vulnerabilidad no especificada en Oracle Java SE 7u51 y 8, y Java SE Embedded 7u51, permite a atacantes remotos afectar la confidencialidad, integridad y disponibilidad a trav\u00e9s de vectores desconocidos relacionados con la seguridad."}], "lastModified": "2022-05-13T14:57:20.957", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:canonical:ubuntu_linux:12.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E2076871-2E80-4605-A470-A41C1A8EC7EE"}, {"criteria": "cpe:2.3:o:canonical:ubuntu_linux:13.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7F61F047-129C-41A6-8A27-FFCBB8563E91"}, {"criteria": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*", "vulnerable": true, "matchCriteriaId": "815D70A8-47D3-459C-A32C-9FEACA0659D1"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:oracle:jdk:1.7.0:update51:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3343969B-2926-4C55-8787-792ABF6429D7"}, {"criteria": "cpe:2.3:a:oracle:jdk:1.8.0:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F906BFD6-7654-46C5-8240-3A50949CAE85"}, {"criteria": "cpe:2.3:a:oracle:jre:1.7.0:update51:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4DA64EFB-8416-4A0B-91B5-F02CC1A79D40"}, {"criteria": "cpe:2.3:a:oracle:jre:1.8.0:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CA226495-4733-485A-9D53-85874434815D"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:ibm:forms_viewer:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "745E0942-12A9-49B3-851C-ED67F047BCEB", "versionEndExcluding": "4.0.0.3", "versionStartIncluding": "4.0.0"}, {"criteria": "cpe:2.3:a:ibm:forms_viewer:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5452C9C6-D761-4E3D-B7CF-C0AC55D08650", "versionEndExcluding": "8.0.1.1", "versionStartIncluding": "8.0.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "A2572D17-1DE6-457B-99CC-64AFD54487EA"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "secalert_us@oracle.com"}