CVE-2014-6601 — Oracle JDK vulnerability
10 documents8 sources
Severity
10.0CRITICALNVD
OSV3.4
EPSS
13.3%
top 5.83%
CISA KEV
Not in KEV
Exploit
No known exploits
Timeline
PublishedJan 21
Latest updateMay 13
Description
Unspecified vulnerability in Oracle Java SE 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.
CVSS vector
AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0
Affected Packages5 packages
Also affects: Debian Linux 7.0, 8.0, Ubuntu Linux 10.04, 12.04, 14.04, 14.10, Enterprise Linux 5.0, 6.0, 7.0
Patches
🔴Vulnerability Details
4GHSA▶
GHSA-cp93-48x3-6m3g: Unspecified vulnerability in Oracle Java SE 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality, integrity, and availability via un↗2022-05-13
OSV▶
CVE-2014-6601: Unspecified vulnerability in Oracle Java SE 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality, integrity, and availability via un↗2015-01-21
CVEList▶
CVE-2014-6601: Unspecified vulnerability in Oracle Java SE 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality, integrity, and availability via un↗2015-01-21
📋Vendor Advisories
4Red Hat
▶
Debian▶
CVE-2014-6601: openjdk-8 - Unspecified vulnerability in Oracle Java SE 6u85, 7u72, and 8u25 allows remote a...↗2014
💬Community
1Bugzilla▶
CVE-2014-6601 OpenJDK: class verifier insufficient invokespecial calls verification (Hotspot, 8058982)↗2015-01-16