PT-2014-1277 · Oracle+5 · Java Se Embedded+7

Published

2014-04-15

Updated

2024-06-15

CVE-2014-2413

CVSS v2.0

4.3

Medium

Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions Java SE versions 7u51 and 8 Java SE Embedded version 7u51

Description The issue is related to the Libraries subcomponent, allowing a remote attacker to compromise the confidentiality, integrity, and availability of data. The vulnerability can be exploited via unknown vectors related to Libraries.

Recommendations For Java SE versions 7u51 and 8, and Java SE Embedded version 7u51, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting access to the Libraries subcomponent to minimize the risk of exploitation.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-461

Related Identifiers

BDU:2015-00039

BDU:2015-00040

CESA-2014_0406

CVE-2014-2413

DSA-2923-1

HPSBUX03091

MGASA-2014-0189

OPENSUSE-SU-2024:10534-1

RHSA-2014:0406

RHSA-2014:0407

RHSA-2014:0412

RHSA-2014:0413

RHSA-2014:0675

RHSA-2014_0406

RHSA-2014_0407

RHSA-2014_0412

RHSA-2014_0413

RHSA-2014_0675

USN-2187-1

Affected Products

Centos

Hp-Ux

Java Platform

Java Se

Java Se Embedded

Red Hat

Suse

Ubuntu

PT-2014-1277 · Oracle+5 · Java Se Embedded+7

CVE-2014-2413

Weakness Enumeration

Related Identifiers

Affected Products

References · 558