CVE-2014-6527Oracle JDK vulnerability

15 documents8 sources
Severity
5.0MEDIUMNVD
NVD2.6OSV4.0
EPSS
2.7%
top 14.20%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Oracle JDKOracle JRE
Timeline
PublishedOct 15
Latest updateMay 13

Description

Unspecified vulnerability in Oracle Java SE 7u67 and 8u20 allows remote attackers to affect integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2014-6476.

CVSS vector

AV:N/AC:H/C:N/I:P/A:NExploitability: 4.9 | Impact: 2.9

Affected Packages2 packages

NVDoracle/jdk1.7.0, 1.8.0+1
NVDoracle/jre1.7.0, 1.8.0+1

Patches

Patch: www.oracle.comPatch: www.oracle.com

🔴Vulnerability Details

6
GHSA
GHSA-9jm9-fhq7-3xp9: Unspecified vulnerability in Oracle Java SE 7u67 and 8u20 allows remote attackers to affect integrity via unknown vectors related to Deployment, a dif2022-05-13
GHSA
GHSA-ggwq-56q5-rxg8: Unspecified vulnerability in Oracle Java SE 7u67 and 8u20 allows remote attackers to affect integrity via unknown vectors related to Deployment, a dif2022-05-13
OSV
openjdk-7 vulnerabilities2014-10-23
CVEList
CVE-2014-6527: Unspecified vulnerability in Oracle Java SE 7u67 and 8u20 allows remote attackers to affect integrity via unknown vectors related to Deployment, a dif2014-10-15
CVEList
CVE-2014-6476: Unspecified vulnerability in Oracle Java SE 7u67 and 8u20 allows remote attackers to affect integrity via unknown vectors related to Deployment, a dif2014-10-15

📋Vendor Advisories

6
Ubuntu
OpenJDK 7 vulnerabilities2014-10-23
Ubuntu
OpenJDK 7 vulnerabilities2014-10-23
Red Hat
JDK: unspecified vulnerability fixed in 7u71 and 8u25 (Deployment)2014-10-14
Red Hat
JDK: unspecified vulnerability fixed in 7u71 and 8u25 (Deployment)2014-10-14
Debian
CVE-2014-6476: openjdk-8 - Unspecified vulnerability in Oracle Java SE 7u67 and 8u20 allows remote attacker...2014

💬Community

1
Bugzilla
CVE-2014-6527 Oracle JDK: unspecified vulnerability fixed in 7u71 and 8u25 (Deployment)2014-10-14
CVE-2014-6527 — Oracle JDK vulnerability | cvebase