CVE-2014-6485

HIGH

Description

Unspecified vulnerability in Oracle Java SE 8u20 and JavaFX 2.2.65 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.

References

http://secunia.com/advisories/61609

http://secunia.com/advisories/61632

http://security.gentoo.org/glsa/glsa-201502-12.xml

http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html

http://www.securityfocus.com/bid/70519

Details

Source: MITRE

Published: 2014-10-15

Updated: 2015-02-21

Type: NVD-CWE-noinfo

Risk Information

CVSS v2.0

Base Score: 9.3

Vector: (AV:N/AC:M/Au:N/C:C/I:C/A:C)

Impact Score: 10

Exploitability Score: 8.6

Severity: HIGH

Tenable Plugins

View all (5 total)

ID	Name	Product	Family	Severity
81370	GLSA-201502-12 : Oracle JRE/JDK: Multiple vulnerabilities	Nessus	Gentoo Local Security Checks	critical
79208	SuSE 11.3 Security Update : Java OpenJDK (SAT Patch Number 9906)	Nessus	SuSE Local Security Checks	critical
78482	Oracle Java SE Multiple Vulnerabilities (October 2014 CPU) (Unix)	Nessus	Misc.	critical
78481	Oracle Java SE Multiple Vulnerabilities (October 2014 CPU)	Nessus	Windows	critical
8550	Oracle Java Update (October 2014) Multiple Vulnerabilities	Nessus Network Monitor	Web Clients	critical