CVE-2014-0452
Last modified
CVE-2014-0452 is a vulnerability of currently unknown severity. Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAX-WS, a different vulnerability than CVE-2014-0458 and CVE-2014-2423.. EPSS estimates a 4.94% chance of exploitation in the next 30 days.
Description
Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAX-WS, a different vulnerability than CVE-2014-0458 and CVE-2014-2423.
Metrics
Affected Software
| Vendor | Product | Versions | Update |
|---|---|---|---|
| Canonical | Ubuntu Linux | 10.04 | — |
| Canonical | Ubuntu Linux | 12.04 | — |
| Canonical | Ubuntu Linux | 12.10 | — |
| Canonical | Ubuntu Linux | 13.10 | — |
| Canonical | Ubuntu Linux | 14.04 | — |
| Oracle | Jdk | 1.6.0 | Update71 |
| Oracle | Jdk | 1.7.0 | Update51 |
| Oracle | Jdk | 1.8.0 | — |
| Oracle | Jre | 1.6.0 | Update71 |
| Oracle | Jre | 1.7.0 | Update51 |
| Oracle | Jre | 1.8.0 | — |
| Debian | Debian Linux | 6.0 | — |
| Debian | Debian Linux | 7.0 | — |
| Debian | Debian Linux | 8.0 | — |
References
- http://marc.info/?l=bugtraq&m=140852886808946&w=2Issue Tracking, Mailing List, Third Party Advisory
- http://marc.info/?l=bugtraq&m=140852974709252&w=2Issue Tracking, Mailing List, Third Party Advisory
- http://rhn.redhat.com/errata/RHSA-2014-0675.htmlThird Party Advisory
- http://rhn.redhat.com/errata/RHSA-2014-0685.htmlThird Party Advisory
- http://secunia.com/advisories/58415Third Party Advisory
- http://security.gentoo.org/glsa/glsa-201406-32.xmlThird Party Advisory
- http://security.gentoo.org/glsa/glsa-201502-12.xmlThird Party Advisory
- http://www-01.ibm.com/support/docview.wss?uid=swg21672080Third Party Advisory
- http://www.debian.org/security/2014/dsa-2912Third Party Advisory
- http://www.securityfocus.com/bid/66891Third Party Advisory, VDB Entry
- http://www.ubuntu.com/usn/USN-2187-1Third Party Advisory
- http://www.ubuntu.com/usn/USN-2191-1Third Party Advisory
- https://access.redhat.com/errata/RHSA-2014:0413Third Party Advisory
- https://access.redhat.com/errata/RHSA-2014:0414Third Party Advisory
- http://marc.info/?l=bugtraq&m=140852886808946&w=2Issue Tracking, Mailing List, Third Party Advisory
- http://marc.info/?l=bugtraq&m=140852974709252&w=2Issue Tracking, Mailing List, Third Party Advisory
- http://rhn.redhat.com/errata/RHSA-2014-0675.htmlThird Party Advisory
- http://rhn.redhat.com/errata/RHSA-2014-0685.htmlThird Party Advisory
- http://secunia.com/advisories/58415Third Party Advisory
- http://security.gentoo.org/glsa/glsa-201406-32.xmlThird Party Advisory
- http://security.gentoo.org/glsa/glsa-201502-12.xmlThird Party Advisory
- http://www-01.ibm.com/support/docview.wss?uid=swg21672080Third Party Advisory
- http://www.debian.org/security/2014/dsa-2912Third Party Advisory
- http://www.securityfocus.com/bid/66891Third Party Advisory, VDB Entry
- http://www.ubuntu.com/usn/USN-2187-1Third Party Advisory
- http://www.ubuntu.com/usn/USN-2191-1Third Party Advisory
- https://access.redhat.com/errata/RHSA-2014:0413Third Party Advisory
- https://access.redhat.com/errata/RHSA-2014:0414Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2014-0452?
How severe is CVE-2014-0452?
How do I fix CVE-2014-0452?
Are you affected by CVE-2014-0452?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST