CVE-2014-0382

Опубликовано: 15 янв. 2014

Источник: nvd

CVSS2: 4.3

EPSS Низкий

Описание

Unspecified vulnerability in Oracle Java SE 7u45 and JavaFX 2.2.45 allows remote attackers to affect availability via unknown vectors related to JavaFX.

Комментарий

Per: http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html

"Applies to client deployment of Java only. This vulnerability can be exploited only through sandboxed Java Web Start applications and sandboxed Java applets."

Ссылки

http://marc.info/?l=bugtraq&m=139402697611681&w=2
Third Party Advisory
http://marc.info/?l=bugtraq&m=139402697611681&w=2
Third Party Advisory
http://osvdb.org/102026
Broken Link
http://rhn.redhat.com/errata/RHSA-2014-0030.html
Third Party Advisory
http://secunia.com/advisories/56484
Permissions Required
http://secunia.com/advisories/56485
Permissions Required
http://secunia.com/advisories/56535
Permissions Required
http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html
Vendor Advisory
http://www.securityfocus.com/bid/64758
Third Party Advisory
VDB Entry
http://www.securityfocus.com/bid/64936
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1029608
Third Party Advisory
VDB Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/90355
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04166777
Third Party Advisory
http://marc.info/?l=bugtraq&m=139402697611681&w=2
Third Party Advisory
http://marc.info/?l=bugtraq&m=139402697611681&w=2
Third Party Advisory
http://osvdb.org/102026
Broken Link
http://rhn.redhat.com/errata/RHSA-2014-0030.html
Third Party Advisory
http://secunia.com/advisories/56484
Permissions Required
http://secunia.com/advisories/56485
Permissions Required
http://secunia.com/advisories/56535
Permissions Required

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:oracle:jre:1.7.0:update45:*:*:*:*:*:*

Конфигурация 2

Одновременно

Одно из

cpe:2.3:a:hp:jdk:*:*:*:*:*:*:*:*

Версия до 7.0.08 (включая)

cpe:2.3:a:hp:jre:*:*:*:*:*:*:*:*

Версия до 7.0.08 (включая)

Одно из

cpe:2.3:o:hp:hp-ux:b.11.23:*:*:*:*:*:*:*

cpe:2.3:o:hp:hp-ux:b.11.31:*:*:*:*:*:*:*

Конфигурация 3

Одно из

cpe:2.3:o:redhat:enterprise_linux_desktop_supplementary:5.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_desktop_supplementary:6.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_hpc_node_supplementary:6.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server_supplementary:5.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server_supplementary:6.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server_supplementary_aus:6.5:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server_supplementary_eus:6.5.z:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_workstation_supplementary:6.0:*:*:*:*:*:*:*

Конфигурация 4

cpe:2.3:a:oracle:javafx:2.2.45:*:*:*:*:*:*:*

EPSS

Процентиль: 84%

0.02209

Низкий

4.3 Medium

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

CVE-2014-0382

ubuntu

больше 11 лет назад

Unspecified vulnerability in Oracle Java SE 7u45 and JavaFX 2.2.45 allows remote attackers to affect availability via unknown vectors related to JavaFX.

CVE-2014-0382

redhat

больше 11 лет назад

Unspecified vulnerability in Oracle Java SE 7u45 and JavaFX 2.2.45 allows remote attackers to affect availability via unknown vectors related to JavaFX.

CVE-2014-0382

debian

больше 11 лет назад

Unspecified vulnerability in Oracle Java SE 7u45 and JavaFX 2.2.45 all ...

GHSA-24ch-r26p-7c3f

github

около 3 лет назад

Unspecified vulnerability in Oracle Java SE 7u45 and JavaFX 2.2.45 allows remote attackers to affect availability via unknown vectors related to JavaFX.

BDU:2014-00456

fstec

больше 11 лет назад

Уязвимость программной платформы Java Runtime Environment, позволяющая удаленному злоумышленнику нарушить конфиденциальность и целостность данных

EPSS

Процентиль: 84%

0.02209

Низкий

4.3 Medium

CVSS2

Дефекты

NVD-CWE-noinfo