CVE-2014-0455

critical

Description

Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2014-0432 and CVE-2014-2402.

References

Advisories
More

https://www.ibm.com/support/docview.wss?uid=swg21675973

https://access.redhat.com/errata/RHSA-2014:0413

http://www.ubuntu.com/usn/USN-2187-1

http://www.securityfocus.com/bid/66899

http://www-01.ibm.com/support/docview.wss?uid=swg21672080

http://security.gentoo.org/glsa/glsa-201502-12.xml

http://secunia.com/advisories/58974

http://rhn.redhat.com/errata/RHSA-2014-0675.html

http://marc.info/?l=bugtraq&m=140852886808946&w=2

http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html

Details

Source: Mitre, NVD

Published: 2014-04-16

Updated: 2025-04-12

Risk Information

CVSS v2

Base Score: 9.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical

EPSS

EPSS: 0.05095