CVE-2014-6601

Unspecified vulnerability in Oracle Java SE 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.

CVSS v2.0 10.0 HIGH

10.0^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 10.0 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html	Patch Vendor Advisory
http://www.securitytracker.com/id/1031580
http://www.debian.org/security/2015/dsa-3147
http://marc.info/?l=bugtraq&m=142496355704097&w=2
http://www.debian.org/security/2015/dsa-3144
http://www.ubuntu.com/usn/USN-2487-1
http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00001.html
http://www.ubuntu.com/usn/USN-2486-1
http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00024.html
http://rhn.redhat.com/errata/RHSA-2015-0080.html
http://rhn.redhat.com/errata/RHSA-2015-0068.html
http://marc.info/?l=bugtraq&m=142607790919348&w=2
http://rhn.redhat.com/errata/RHSA-2015-0079.html
http://rhn.redhat.com/errata/RHSA-2015-0085.html
http://h20564.www2.hp.com/hpsc/doc/public/display?docId=emr_na-c04583581
http://rhn.redhat.com/errata/RHSA-2015-0086.html
http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00018.html
http://www.vmware.com/security/advisories/VMSA-2015-0003.html
https://security.gentoo.org/glsa/201603-14
https://security.gentoo.org/glsa/201507-14
http://www.securityfocus.com/bid/72132

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:redhat:enterprise_linux:7.0:::::::*
	cpe:2.3:o:redhat:enterprise_linux:6.0:::::::*
	cpe:2.3:o:canonical:ubuntu_linux:12.04::::lts:::
	cpe:2.3:o:novell:suse_linux_enterprise_server:12.0:::::::*
	cpe:2.3:o:debian:debian_linux:8.0:::::::*
	cpe:2.3:o:debian:debian_linux:7.0:::::::*
	cpe:2.3:o:canonical:ubuntu_linux:14.10:::::::*
	cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::
	cpe:2.3:o:novell:suse_linux_enterprise_desktop:11.0:sp3::::::
	cpe:2.3:o:redhat:enterprise_linux:5.0:::::::*
	cpe:2.3:o:canonical:ubuntu_linux:10.04::::lts:::
	cpe:2.3:o:opensuse:opensuse:13.2:::::::*

Configuration 2 (hide)

OR	cpe:2.3:a:oracle:jdk:1.8.0:update25::::::
	cpe:2.3:a:oracle:jdk:1.7.0:update72::::::
	cpe:2.3:a:oracle:jdk:1.6.0:update85::::::
	cpe:2.3:a:oracle:jre:1.6.0:update85::::::
	cpe:2.3:a:oracle:jre:1.7.0:update72::::::
	cpe:2.3:a:oracle:jre:1.8.0:update25::::::

Information

Published : 2015-01-21 10:59

Updated : 2022-05-13 07:57

NVD link : CVE-2014-6601

Mitre link : CVE-2014-6601

JSON object : View

CWE

NVD-CWE-noinfo

Products Affected

novell

suse_linux_enterprise_server
suse_linux_enterprise_desktop

redhat

enterprise_linux

canonical

ubuntu_linux

oracle

debian

debian_linux

opensuse

opensuse

10.0 /10