CVE-2014-8891
published 2015-03-06CVE-2014-8891: Unspecified vulnerability in the Java Virtual Machine (JVM) in IBM SDK, Java Technology Edition 5.0 before SR16-FP9, 6 before SR16-FP3, 6R1 before SR8-FP3, 7…
critical10CVSS 3.1
AVNACLAuNCCICAC
Unspecified vulnerability in the Java Virtual Machine (JVM) in IBM SDK, Java Technology Edition 5.0 before SR16-FP9, 6 before SR16-FP3, 6R1 before SR8-FP3, 7 before SR8-FP10, and 7R1 before SR2-FP10 allows remote attackers to escape the Java sandbox and execute arbitrary code via unspecified vectors related to the security manager.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | java_sdk | 5.0.0.0 – 5.0.16.8 | — |
| ibm | java_sdk | >= 6.0.0.0 < 6.0.16.3 | 6.0.16.3 |
| ibm | java_sdk | 6.1.0.0 – 6.1.8.2 | — |
| ibm | java_sdk | >= 7.0.0.0 < 7.0.8.10 | 7.0.8.10 |
| ibm | java_sdk | >= 7.1.0.0 < 7.1.2.10 | 7.1.2.10 |