cbcvebase.
CVE-2014-6457
published 2014-10-15

CVE-2014-6457: Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20; Java SE Embedded 7u60; and JRockit R27.8.3, and R28.3.3 allows remote attackers to…

medium4CVSS 3.1
AVNACHAuNCNIPAP
Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20; Java SE Embedded 7u60; and JRockit R27.8.3, and R28.3.3 allows remote attackers to affect confidentiality and integrity via vectors related to JSSE.

Affected

11 ranges
VendorProductVersion rangeFixed in
debianopenjdk-8< openjdk-8 8u40~b09-1 (sid)openjdk-8 8u40~b09-1 (sid)
oraclejdk
oraclejdk
oraclejdk
oraclejdk
oraclejre
oraclejre
oraclejre
oraclejre
oraclejrockit
oraclejrockit

CVSS provenance

nvd4.0MEDIUMAV:N/AC:H/Au:N/C:N/I:P/A:P
osv4.0MEDIUM