CVE-2014-4264MEDIUM
Description
Unspecified vulnerability in Oracle Java SE 7u60 and 8u5 allows remote attackers to affect availability via unknown vectors related to Security.
References
http://marc.info/?l=bugtraq&m=140852886808946&w=2
http://seclists.org/fulldisclosure/2014/Dec/23
http://secunia.com/advisories/60326
http://secunia.com/advisories/60485
http://secunia.com/advisories/60812
http://secunia.com/advisories/60890
http://security.gentoo.org/glsa/glsa-201502-12.xml
http://www.debian.org/security/2014/dsa-2987
http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html
http://www.securityfocus.com/archive/1/534161/100/0/threaded
http://www.securityfocus.com/bid/68612
http://www.securitytracker.com/id/1030577
http://www.vmware.com/security/advisories/VMSA-2014-0012.html
https://access.redhat.com/errata/RHSA-2014:0902
https://exchange.xforce.ibmcloud.com/vulnerabilities/94603
https://kc.mcafee.com/corporate/index?page=content&id=SB10083
Details
Source: MITRE
Published: 2014-07-17
Updated: 2020-09-08
Type: NVD-CWE-noinfo
Risk Information
CVSS v2.0
Base Score: 5
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Impact Score: 2.9
Exploitability Score: 10
Severity: MEDIUM
Vulnerable Software
Configuration 1
OR
cpe:2.3:a:oracle:jdk:1.7.0:update60:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.8.0:update5:*:*:*:*:*:*
Tenable Plugins
| ID | Name | Product | Family | Severity |
|---|---|---|---|---|
| 81370 | GLSA-201502-12 : Oracle JRE/JDK: Multiple vulnerabilities | Nessus | Gentoo Local Security Checks | critical |
| 80197 | Juniper Junos Space < 14.1R1 Multiple Vulnerabilities (JSA10659) | Nessus | Junos Local Security Checks | high |
| 80046 | openSUSE Security Update : java-1_7_0-openjdk (openSUSE-SU-2014:1638-1) | Nessus | SuSE Local Security Checks | critical |
| 80045 | openSUSE Security Update : java-1_7_0-openjdk (openSUSE-SU-2014:1645-1) | Nessus | SuSE Local Security Checks | critical |
| 79865 | VMware Security Updates for vCenter Server (VMSA-2014-0012) | Nessus | Misc. | critical |
| 79864 | VMware vCenter Update Manager Multiple Java Vulnerabilities (VMSA-2014-0012) | Nessus | Windows | critical |
| 79036 | RHEL 5 / 6 / 7 : java-1.7.0-oracle (RHSA-2014:0902) | Nessus | Red Hat Local Security Checks | critical |
| 77724 | Ubuntu 14.04 LTS : openjdk-7 update (USN-2319-3) | Nessus | Ubuntu Local Security Checks | high |
| 77387 | Ubuntu 14.04 LTS : openjdk-7 regression (USN-2319-2) | Nessus | Ubuntu Local Security Checks | high |
| 77282 | Puppet Enterprise 3.3.0 Bundled Oracle Java Vulnerabilities | Nessus | CGI abuses | critical |
| 77274 | Ubuntu 14.04 LTS : openjdk-7 vulnerabilities (USN-2319-1) | Nessus | Ubuntu Local Security Checks | high |
| 76998 | SuSE 11.3 Security Update : openjdk (SAT Patch Number 9543) | Nessus | SuSE Local Security Checks | critical |
| 76842 | Debian DSA-2987-1 : openjdk-7 - security update | Nessus | Debian Local Security Checks | high |
| 76533 | Oracle Java SE Multiple Vulnerabilities (July 2014 CPU) (Unix) | Nessus | Misc. | critical |
| 76532 | Oracle Java SE Multiple Vulnerabilities (July 2014 CPU) | Nessus | Windows | critical |