PT-2014-1655 · Oracle+5 · Oracle Java Se+6

Publicado

2014-10-14

Atualizado

2020-09-08

CVE-2014-6527

CVSS v2.0

2.6

Baixa

Vetor

AV:N/AC:H/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions Oracle Java SE versions 7u67 through 8u20

Description The issue allows remote attackers to affect the integrity of data via unknown vectors related to the Deployment component. It is estimated that a significant number of devices worldwide may be potentially affected, although the exact number is not specified. There is no information provided about real-world incidents where this issue was exploited.

Recommendations For Oracle Java SE versions 7u67 through 8u20, update to a version that contains the fix for this issue, as specified in Oracle's October 2014 Critical Patch Update Advisory. As a temporary workaround, consider restricting access to the Deployment component until a patch is available.

Exploit

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-17

Identificadores relacionados

BDU:2015-00573

CVE-2014-6527

HPSBUX03218

RHSA-2014:1657

RHSA-2014:1876

RHSA-2014:1880

RHSA-2014:1882

RHSA-2014_1657

RHSA-2014_1880

RHSA-2014_1882

USN-2388-1

Produtos afetados

Hp-Ux

Ibm Aix

Java Platform

Oracle Java Se

Red Hat

Suse

Ubuntu

PT-2014-1655 · Oracle+5 · Oracle Java Se+6

CVE-2014-6527

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 121