CVE-2014-0457

9 documents7 sources
Severity
10.0CRITICAL
EPSS
7.8%
top 8.02%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
7
IBM Forms ViewerJuniper Junos SpaceCanonical Ubuntu Linux+4 more
Timeline
PublishedApr 16
Latest updateMay 10

Description

Unspecified vulnerability in Oracle Java SE 5.0u61, SE 6u71, 7u51, and 8; JRockit R27.8.1 and R28.3.1; and Java SE Embedded 7u51 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages6 packages

NVDoracle/jrockitr27.8.1, r28.3.1+1
NVDoracle/jdk4 versions+3
NVDoracle/jre4 versions+3
NVDibm/forms_viewer4.0.04.0.0.3+1

Also affects: Debian Linux 6.0, 7.0, 8.0, Ubuntu Linux 10.04, 12.04, 12.10, 13.10, 14.04

🔴Vulnerability Details

4
GHSA
GHSA-ph3v-m9mc-6c3f: Unspecified vulnerability in Oracle Java SE 52022-05-10
OSV
openjdk-7 vulnerabilities2014-04-30
CVEList
CVE-2014-0457: Unspecified vulnerability in Oracle Java SE 52014-04-16
OSV
CVE-2014-0457: Unspecified vulnerability in Oracle Java SE 52014-04-15

📋Vendor Advisories

3
Ubuntu
OpenJDK 6 vulnerabilities2014-05-01
Ubuntu
OpenJDK 7 vulnerabilities2014-04-30
Red Hat
OpenJDK: ServiceLoader Exception handling security bypass (Libraries, 8031394)2014-04-15

💬Community

1
Bugzilla
CVE-2014-0457 OpenJDK: ServiceLoader Exception handling security bypass (Libraries, 8031394)2014-04-14
CVE-2014-0457 (CRITICAL CVSS 10) | Unspecified vulnerability in Oracle | cvebase.io