CVE-2014-3065
JDK: privilege escalation via shared class cache
Severity Score
7.8
*CVSS v3
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Unspecified vulnerability in IBM Java Runtime Environment (JRE) 7 R1 before SR2 (7.1.2.0), 7 before SR8 (7.0.8.0), 6 R1 before SR8 FP2 (6.1.8.2), 6 before SR16 FP2 (6.0.16.2), and before SR16 FP8 (5.0.16.8) allows local users to execute arbitrary code via vectors related to the shared classes cache.
Vulnerabilidad no especificada en IBM Java Runtime Environment (JRE) 7 R1 anterior a SR2 (7.1.2.0), 7 anterior a SR8 (7.0.8.0), 6 R1 anterior a SR8 FP2 (6.1.8.2), 6 anterior a SR16 FP2 (6.0.16.2), y anterior a SR16 FP8 (5.0.16.8) permite a usuarios locales ejecutar código arbitrario a través de vectores relacionados con el caché de clases compartidas.
This update corrects several security vulnerabilities in the IBM Java Runtime Environment shipped as part of Red Hat Satellite 5.6. In a typical operating environment, these are of low security risk as the runtime is not used on untrusted applets. Several flaws were fixed in the IBM Java 2 Runtime Environment.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2014-04-29 CVE Reserved
- 2014-11-20 CVE Published
- 2024-08-06 CVE Updated
- 2025-04-05 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-94: Improper Control of Generation of Code ('Code Injection')
CAPEC
References (18)
| URL | Tag | Source |
|---|---|---|
| http://www.securityfocus.com/bid/71147 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Ibm Search vendor "Ibm" | Java Search vendor "Ibm" for product "Java" | 5.0.0.0 Search vendor "Ibm" for product "Java" and version "5.0.0.0" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Java Search vendor "Ibm" for product "Java" | 5.0.11.0 Search vendor "Ibm" for product "Java" and version "5.0.11.0" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Java Search vendor "Ibm" for product "Java" | 5.0.11.1 Search vendor "Ibm" for product "Java" and version "5.0.11.1" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Java Search vendor "Ibm" for product "Java" | 5.0.11.2 Search vendor "Ibm" for product "Java" and version "5.0.11.2" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Java Search vendor "Ibm" for product "Java" | 5.0.12.0 Search vendor "Ibm" for product "Java" and version "5.0.12.0" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Java Search vendor "Ibm" for product "Java" | 5.0.12.1 Search vendor "Ibm" for product "Java" and version "5.0.12.1" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Java Search vendor "Ibm" for product "Java" | 5.0.12.2 Search vendor "Ibm" for product "Java" and version "5.0.12.2" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Java Search vendor "Ibm" for product "Java" | 5.0.12.3 Search vendor "Ibm" for product "Java" and version "5.0.12.3" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Java Search vendor "Ibm" for product "Java" | 5.0.12.4 Search vendor "Ibm" for product "Java" and version "5.0.12.4" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Java Search vendor "Ibm" for product "Java" | 5.0.12.5 Search vendor "Ibm" for product "Java" and version "5.0.12.5" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Java Search vendor "Ibm" for product "Java" | 5.0.13.0 Search vendor "Ibm" for product "Java" and version "5.0.13.0" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Java Search vendor "Ibm" for product "Java" | 5.0.14.0 Search vendor "Ibm" for product "Java" and version "5.0.14.0" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Java Search vendor "Ibm" for product "Java" | 5.0.15.0 Search vendor "Ibm" for product "Java" and version "5.0.15.0" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Java Search vendor "Ibm" for product "Java" | 5.0.16.0 Search vendor "Ibm" for product "Java" and version "5.0.16.0" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Java Search vendor "Ibm" for product "Java" | 5.0.16.1 Search vendor "Ibm" for product "Java" and version "5.0.16.1" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Java Search vendor "Ibm" for product "Java" | 5.0.16.2 Search vendor "Ibm" for product "Java" and version "5.0.16.2" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Java Search vendor "Ibm" for product "Java" | 5.0.16.3 Search vendor "Ibm" for product "Java" and version "5.0.16.3" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Java Search vendor "Ibm" for product "Java" | 6.0.0.0 Search vendor "Ibm" for product "Java" and version "6.0.0.0" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Java Search vendor "Ibm" for product "Java" | 6.0.1.0 Search vendor "Ibm" for product "Java" and version "6.0.1.0" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Java Search vendor "Ibm" for product "Java" | 6.0.2.0 Search vendor "Ibm" for product "Java" and version "6.0.2.0" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Java Search vendor "Ibm" for product "Java" | 6.0.3.0 Search vendor "Ibm" for product "Java" and version "6.0.3.0" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Java Search vendor "Ibm" for product "Java" | 6.0.4.0 Search vendor "Ibm" for product "Java" and version "6.0.4.0" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Java Search vendor "Ibm" for product "Java" | 6.0.5.0 Search vendor "Ibm" for product "Java" and version "6.0.5.0" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Java Search vendor "Ibm" for product "Java" | 6.0.6.0 Search vendor "Ibm" for product "Java" and version "6.0.6.0" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Java Search vendor "Ibm" for product "Java" | 6.0.7.0 Search vendor "Ibm" for product "Java" and version "6.0.7.0" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Java Search vendor "Ibm" for product "Java" | 6.0.8.0 Search vendor "Ibm" for product "Java" and version "6.0.8.0" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Java Search vendor "Ibm" for product "Java" | 6.0.8.1 Search vendor "Ibm" for product "Java" and version "6.0.8.1" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Java Search vendor "Ibm" for product "Java" | 6.0.9.0 Search vendor "Ibm" for product "Java" and version "6.0.9.0" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Java Search vendor "Ibm" for product "Java" | 6.0.9.1 Search vendor "Ibm" for product "Java" and version "6.0.9.1" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Java Search vendor "Ibm" for product "Java" | 6.0.9.2 Search vendor "Ibm" for product "Java" and version "6.0.9.2" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Java Search vendor "Ibm" for product "Java" | 6.0.10.0 Search vendor "Ibm" for product "Java" and version "6.0.10.0" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Java Search vendor "Ibm" for product "Java" | 6.0.10.1 Search vendor "Ibm" for product "Java" and version "6.0.10.1" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Java Search vendor "Ibm" for product "Java" | 6.0.11.0 Search vendor "Ibm" for product "Java" and version "6.0.11.0" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Java Search vendor "Ibm" for product "Java" | 6.0.12.0 Search vendor "Ibm" for product "Java" and version "6.0.12.0" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Java Search vendor "Ibm" for product "Java" | 6.0.13.0 Search vendor "Ibm" for product "Java" and version "6.0.13.0" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Java Search vendor "Ibm" for product "Java" | 6.0.13.1 Search vendor "Ibm" for product "Java" and version "6.0.13.1" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Java Search vendor "Ibm" for product "Java" | 6.0.13.2 Search vendor "Ibm" for product "Java" and version "6.0.13.2" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Java Search vendor "Ibm" for product "Java" | 6.0.14.0 Search vendor "Ibm" for product "Java" and version "6.0.14.0" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Java Search vendor "Ibm" for product "Java" | 7.0.0.0 Search vendor "Ibm" for product "Java" and version "7.0.0.0" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Java Search vendor "Ibm" for product "Java" | 7.0.1.0 Search vendor "Ibm" for product "Java" and version "7.0.1.0" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Java Search vendor "Ibm" for product "Java" | 7.0.2.0 Search vendor "Ibm" for product "Java" and version "7.0.2.0" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Java Search vendor "Ibm" for product "Java" | 7.0.3.0 Search vendor "Ibm" for product "Java" and version "7.0.3.0" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Java Search vendor "Ibm" for product "Java" | 7.0.4.0 Search vendor "Ibm" for product "Java" and version "7.0.4.0" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Java Search vendor "Ibm" for product "Java" | 7.0.4.1 Search vendor "Ibm" for product "Java" and version "7.0.4.1" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Java Search vendor "Ibm" for product "Java" | 7.0.4.2 Search vendor "Ibm" for product "Java" and version "7.0.4.2" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Java Search vendor "Ibm" for product "Java" | 7.0.5.0 Search vendor "Ibm" for product "Java" and version "7.0.5.0" | - |
Affected
| ||||||