PT-2014-1626 · Oracle+5 · Oracle Java Se Embedded+7

Published

2014-10-14

Updated

2024-06-15

CVE-2014-6504

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Oracle Java SE versions 5.0u71, 6u81, and 7u67 Oracle Java SE Embedded version 7u60

Description The issue affects confidentiality and is related to the Hotspot component. It allows remote attackers to exploit the vulnerability via unknown vectors.

Recommendations For Oracle Java SE versions 5.0u71, 6u81, and 7u67, update to a version that fixes the issue. For Oracle Java SE Embedded version 7u60, update to a version that fixes the issue. As a temporary workaround, consider restricting access to the Hotspot component until a patch is available.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-17

Related Identifiers

BDU:2015-00544

BDU:2015-00586

CESA-2014_1620

CESA-2014_1634

CESA-2014_1636

CVE-2014-6504

DLA-96-1

DSA-3077-1

DSA-3080-1

HPSBUX03218

MGASA-2014-0422

OPENSUSE-SU-2024:10534-1

RHSA-2014:1620

RHSA-2014:1633

RHSA-2014:1634

RHSA-2014:1636

RHSA-2014:1657

RHSA-2014:1658

RHSA-2014_1620

RHSA-2014_1633

RHSA-2014_1634

RHSA-2014_1636

RHSA-2014_1657

RHSA-2014_1658

USN-2386-1

USN-2388-1

USN-2388-2

Affected Products

Centos

Hp-Ux

Java Platform

Oracle Java Se

Oracle Java Se Embedded

Red Hat

Suse

Ubuntu

PT-2014-1626 · Oracle+5 · Oracle Java Se Embedded+7

CVE-2014-6504

Weakness Enumeration

Related Identifiers

Affected Products

References · 473