CVE-2014-0432
published 2014-04-16CVE-2014-0432: Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and…
critical9.3CVSS 3.1
AVNACMAuNCCICAC
Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2014-0455 and CVE-2014-2402.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| ibm | forms_viewer | >= 4.0.0 < 4.0.0.3 | 4.0.0.3 |
| ibm | forms_viewer | >= 8.0.0 < 8.0.1.1 | 8.0.1.1 |
| oracle | jdk | — | — |
| oracle | jdk | — | — |
| oracle | jre | — | — |
| oracle | jre | — | — |
CVSS provenance
nvd9.3CRITICALAV:N/AC:M/Au:N/C:C/I:C/A:C
osv9.3CRITICAL
GHSA
GHSA-phr9-8xqw-f8f7: Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and a
ghsa_unreviewed·2022-05-10·CVSS 9.3
CVE-2014-0455 [CRITICAL] GHSA-phr9-8xqw-f8f7: Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and a
Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2014-0432 and CVE-2014-2402.
GHSA
GHSA-gj43-gc6c-4xvw: Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and a
ghsa_unreviewed·2022-05-10·CVSS 9.3
CVE-2014-0432 [CRITICAL] GHSA-gj43-gc6c-4xvw: Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and a
Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2014-0455 and CVE-2014-2402.
GHSA
GHSA-4f69-3vj6-7fww: Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and a
ghsa_unreviewed·2022-05-10·CVSS 9.3
CVE-2014-2402 [CRITICAL] GHSA-4f69-3vj6-7fww: Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and a
Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2014-0432 and CVE-2014-0455.
OSV
CVE-2014-0455: Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and a
osv·2014-04-15·CVSS 9.3
CVE-2014-0455 [CRITICAL] CVE-2014-0455: Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and a
Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2014-0432 and CVE-2014-2402.
OSV
CVE-2014-2402: Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and a
osv·2014-04-15·CVSS 9.3
CVE-2014-2402 [CRITICAL] CVE-2014-2402: Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and a
Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2014-0432 and CVE-2014-0455.
Red Hat
OpenJDK: MethodHandle variable argument lists handling (Libraries, 8029844)
vendor_redhat·2014-04-15·CVSS 9.3
CVE-2014-0455 [CRITICAL] OpenJDK: MethodHandle variable argument lists handling (Libraries, 8029844)
OpenJDK: MethodHandle variable argument lists handling (Libraries, 8029844)
Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2014-0432 and CVE-2014-2402.
Package: java-1.5.0-ibm (Red Hat Enterprise Linux 5) - Not affected
Package: java-1.6.0-ibm (Red Hat Enterprise Linux 5) - Not affected
Package: java-1.6.0-openjdk (Red Hat Enterprise Linux 5) - Not affected
Package: java-1.5.0-ibm (Red Hat Enterprise Linux 6) - Not affected
Package: java-1.6.0-ibm (Red Hat Enterprise Linux 6) - Not affected
Package: java-1.6.0-openjdk (Red Hat Enterprise Linux 6) - Not affected
Package: java-1.6.0-openjdk (Red
Red Hat
OpenJDK: Incorrect NIO channel separation (Libraries, 8026716)
vendor_redhat·2014-04-15·CVSS 9.3
CVE-2014-2402 [CRITICAL] OpenJDK: Incorrect NIO channel separation (Libraries, 8026716)
OpenJDK: Incorrect NIO channel separation (Libraries, 8026716)
Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2014-0432 and CVE-2014-0455.
Package: java-1.5.0-ibm (Red Hat Enterprise Linux 5) - Not affected
Package: java-1.6.0-ibm (Red Hat Enterprise Linux 5) - Not affected
Package: java-1.6.0-openjdk (Red Hat Enterprise Linux 5) - Not affected
Package: java-1.5.0-ibm (Red Hat Enterprise Linux 6) - Not affected
Package: java-1.6.0-ibm (Red Hat Enterprise Linux 6) - Not affected
Package: java-1.6.0-openjdk (Red Hat Enterprise Linux 6) - Not affected
Package: java-1.6.0-openjdk (Red Hat Enterpri
Red Hat
JDK: unspecified vulnerability fixed in 7u55 and 8u5 (Libraries)
vendor_redhat·2014-04-15·CVSS 9.3
CVE-2014-0432 [CRITICAL] JDK: unspecified vulnerability fixed in 7u55 and 8u5 (Libraries)
JDK: unspecified vulnerability fixed in 7u55 and 8u5 (Libraries)
Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2014-0455 and CVE-2014-2402.
Package: java-1.5.0-ibm (Red Hat Enterprise Linux 5) - Not affected
Package: java-1.6.0-ibm (Red Hat Enterprise Linux 5) - Not affected
Package: java-1.7.0-ibm (Red Hat Enterprise Linux 5) - Not affected
Package: java-1.5.0-ibm (Red Hat Enterprise Linux 6) - Not affected
Package: java-1.6.0-ibm (Red Hat Enterprise Linux 6) - Not affected
Package: java-1.7.0-ibm (Red Hat Enterprise Linux 6) - Not affected
Package: java-1.7.0-oracle (Red Hat Enterprise Linu
No detection rules found.
No public exploits indexed.
http://marc.info/?l=bugtraq&m=140852886808946&w=2http://security.gentoo.org/glsa/glsa-201502-12.xmlhttp://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.htmlhttp://www.securityfocus.com/bid/66897https://access.redhat.com/errata/RHSA-2014:0413http://marc.info/?l=bugtraq&m=140852886808946&w=2http://security.gentoo.org/glsa/glsa-201502-12.xmlhttp://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.htmlhttp://www.securityfocus.com/bid/66897https://access.redhat.com/errata/RHSA-2014:0413
2014-04-16
Published