Detections
Analytics

CVE-2014-0446

critical

Description

Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries.

References

https://access.redhat.com/errata/RHSA-2014:0414

https://access.redhat.com/errata/RHSA-2014:0413

http://www.ubuntu.com/usn/USN-2191-1

http://www.ubuntu.com/usn/USN-2187-1

http://www.securityfocus.com/bid/66903

http://www.debian.org/security/2014/dsa-2912

http://www-01.ibm.com/support/docview.wss?uid=swg21672080

http://security.gentoo.org/glsa/glsa-201502-12.xml

http://security.gentoo.org/glsa/glsa-201406-32.xml

http://secunia.com/advisories/59058

http://secunia.com/advisories/58415

http://rhn.redhat.com/errata/RHSA-2014-0685.html

http://rhn.redhat.com/errata/RHSA-2014-0675.html

http://marc.info/?l=bugtraq&m=140852974709252&w=2

http://marc.info/?l=bugtraq&m=140852886808946&w=2

http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html

Details

Source: Mitre, NVD

Published: 2014-04-16

Updated: 2025-04-12

Risk Information

CVSS v2

Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Severity: High

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical

EPSS

EPSS: 0.04367