PT-2014-1627 · Oracle+6 · Java Se Embedded+8

Published

2014-10-14

Updated

2024-06-15

CVE-2014-6531

CVSS v2.0

4.3

Medium

Vector

AV:N/AC:M/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Oracle Java SE versions 5.0u71, 6u81, 7u67, and 8u20 Java SE Embedded version 7u60

Description The issue allows remote attackers to affect confidentiality via unknown vectors related to Libraries. This affects the confidentiality of data.

Recommendations For Oracle Java SE versions 5.0u71, 6u81, 7u67, and 8u20, update to a version that is not affected by this issue. For Java SE Embedded version 7u60, update to a version that is not affected by this issue. As a temporary workaround, consider restricting access to the Libraries component until a patch is available.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-17

Related Identifiers

BDU:2015-00545

BDU:2015-00587

CESA-2014_1620

CESA-2014_1634

CESA-2014_1636

CVE-2014-6531

DLA-96-1

DSA-3077-1

DSA-3080-1

HPSBUX03218

MGASA-2014-0422

OPENSUSE-SU-2024:10534-1

RHSA-2014:1620

RHSA-2014:1633

RHSA-2014:1634

RHSA-2014:1636

RHSA-2014:1657

RHSA-2014:1658

RHSA-2014:1876

RHSA-2014:1877

RHSA-2014:1880

RHSA-2014:1881

RHSA-2014:1882

RHSA-2014_1620

RHSA-2014_1633

RHSA-2014_1634

RHSA-2014_1636

RHSA-2014_1657

RHSA-2014_1658

RHSA-2014_1877

RHSA-2014_1880

RHSA-2014_1881

RHSA-2014_1882

RHSA-2015:0264

USN-2386-1

USN-2388-1

USN-2388-2

Affected Products

Centos

Hp-Ux

Ibm Aix

Java Platform

Java Se

Java Se Embedded

Red Hat

Suse

Ubuntu

PT-2014-1627 · Oracle+6 · Java Se Embedded+8

CVE-2014-6531

Weakness Enumeration

Related Identifiers

Affected Products

References · 498