CVE-2014-6458Oracle JDK vulnerability

7 documents6 sources
Severity
6.9MEDIUMNVD
EPSS
0.2%
top 63.34%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Oracle JDKOracle JRE
Timeline
PublishedOct 15
Latest updateMay 13

Description

Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.

CVSS vector

AV:L/AC:M/C:C/I:C/A:CExploitability: 3.4 | Impact: 10.0

Affected Packages2 packages

NVDoracle/jdk1.6.0
NVDoracle/jre1.6.0, 1.7.0, 1.8.0+2

Patches

Patch: www.oracle.comPatch: www.oracle.com

🔴Vulnerability Details

2
GHSA
GHSA-vv95-2f9w-r389: Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20 allows local users to affect confidentiality, integrity, and availability via unknown2022-05-13
CVEList
CVE-2014-6458: Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20 allows local users to affect confidentiality, integrity, and availability via unknown2014-10-15

📋Vendor Advisories

2
Red Hat
JDK: unspecified vulnerability fixed in 6u85, 7u71 and 8u25 (Deployment)2014-10-14
Debian
CVE-2014-6458: openjdk-8 - Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20 allows local us...2014

💬Community

2
Bugzilla
CVE-2014-6458 Oracle JDK: unspecified vulnerability fixed in 6u85, 7u71 and 8u25 (Deployment)2014-10-14
Bugzilla
CVE-2013-6458 qemu: job usage issue in several APIs leading to libvirtd crash2014-01-06
CVE-2014-6458 — Oracle JDK vulnerability | cvebase