Page 75 of 472 results (0.028 seconds)

CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0

CVE-2014-6485

https://notcve.org/view.php?id=CVE-2014-6485

Unspecified vulnerability in Oracle Java SE 8u20 and JavaFX 2.2.65 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. Vulnerabilidad sin especificar en Oracle Java SE 8u20 y JavaFX 2.2.65 permite a atacantes remotos afectar la confidencialidad, la integridad y la disponibilidad a través de vectores desconocidos. • http://secunia.com/advisories/61609 http://secunia.com/advisories/61632 http://security.gentoo.org/glsa/glsa-201502-12.xml http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html http://www.securityfocus.com/bid/70519 •

CVSS: 6.8EPSS: 0%CPEs: 2EXPL: 0

CVE-2014-6468 – OpenJDK: insufficient SharedArchiveFile checks (Hotspot, 8044269)

https://notcve.org/view.php?id=CVE-2014-6468

Unspecified vulnerability in Oracle Java SE 8u20 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot. Vulnerabilidad sin especificar en Oracle Java S3 8u20 permite a usuarios locales afectar a la confidencialidad, la integridad, y la disponibilidad a través de vectores desconocidos relacionados con Hotspot. It was discovered that the Hotspot component in OpenJDK failed to properly handle malformed Shared Archive files. A local attacker able to modify a Shared Archive file used by a virtual machine of a different user could possibly use this flaw to escalate their privileges. • http://linux.oracle.com/errata/ELSA-2014-1636 http://rhn.redhat.com/errata/RHSA-2014-1636.html http://secunia.com/advisories/60416 http://secunia.com/advisories/61609 http://secunia.com/advisories/61928 http://security.gentoo.org/glsa/glsa-201502-12.xml http://www-01.ibm.com/support/docview.wss?uid=swg21692299 http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html http://www.securityfocus.com/bid/70488 https://access.redhat.com/security/cve/CVE-2014-6468 •

CVSS: 6.9EPSS: 1%CPEs: 5EXPL: 0

CVE-2014-6466 – Oracle Java jp2launcher.exe Privilege Escalation Vulnerability

https://notcve.org/view.php?id=CVE-2014-6466

Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20, when running on Internet Explorer, allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Deployment. Vulnerabilidad sin especificar en Oracle Java S3 u81, 7u67, and 8u20, cuando se utiliza en Internet Explorer, permite a usuarios locales afectar a la confidencialidad, la integridad y la disponibilidad a través de vectores desconocidos relacionados con Deployment. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle Java. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of paths within jp2launcher.exe. The issue lies in assumptions made in preparation for the call to java.exe. • http://lists.opensuse.org/opensuse-security-announce/2014-11/msg00021.html http://lists.opensuse.org/opensuse-security-announce/2014-12/msg00002.html http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00026.html http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00027.html http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00036.html http://marc.info/?l=bugtraq&m=141775382904016&w=2 http://secunia.com/advisories/61609 http://security.gentoo.org/glsa/glsa •

CVSS: 5.0EPSS: 0%CPEs: 4EXPL: 0

CVE-2014-6476 – JDK: unspecified vulnerability fixed in 7u71 and 8u25 (Deployment)

https://notcve.org/view.php?id=CVE-2014-6476

Unspecified vulnerability in Oracle Java SE 7u67 and 8u20 allows remote attackers to affect integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2014-6527. Vulnerabilidad sin especificar en Oracle Java SE 7u76 y 8u20 permite a atacantes remotos afectar a la integridad a través de vectores relacionados con Deployment, una vulnerabilidad diferente a CVE-2014-6527. • http://lists.opensuse.org/opensuse-security-announce/2014-11/msg00021.html http://lists.opensuse.org/opensuse-security-announce/2014-12/msg00002.html http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00026.html http://marc.info/?l=bugtraq&m=141775382904016&w=2 http://rhn.redhat.com/errata/RHSA-2014-1657.html http://rhn.redhat.com/errata/RHSA-2014-1876.html http://rhn.redhat.com/errata/RHSA-2014-1880.html http://rhn.redhat.com/errata/RHSA-2014-1882.html http:/ •

CVSS: 6.9EPSS: 0%CPEs: 4EXPL: 0

CVE-2014-6458 – JDK: unspecified vulnerability fixed in 6u85, 7u71 and 8u25 (Deployment)

https://notcve.org/view.php?id=CVE-2014-6458

Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Deployment. Vulnerabilidad sin especificar en Oracle Java SE 6u81, 7u67, y 8u20 permite a usuarios locales afectar a la confidencialidad, la integridad y la disponibilidad a través de vectores relacionados con Deployment. • http://lists.opensuse.org/opensuse-security-announce/2014-11/msg00021.html http://lists.opensuse.org/opensuse-security-announce/2014-12/msg00002.html http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00026.html http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00027.html http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00036.html http://marc.info/?l=bugtraq&m=141775382904016&w=2 http://rhn.redhat.com/errata/RHSA-2014-1657.html http://rhn.redhat.co •