Lucene search

OracleCVE-2014-2403

HistoryApr 16, 2014 - 1:55 a.m.

CVE-2014-2403

2014-04-1601:55:10

oracle

web.nvd.nist.gov

cve-2014-2403

oracle

java se

vulnerability

confidentiality

nvd

jaxp

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.1

Confidence

Low

EPSS

0.002

Percentile

64.6%

JSON

Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality via vectors related to JAXP.

Affected configurations

Nvd

Node

canonicalubuntu_linuxMatch10.04-

canonicalubuntu_linuxMatch12.04-

canonicalubuntu_linuxMatch12.10

canonicalubuntu_linuxMatch13.10

canonicalubuntu_linuxMatch14.04esm

Node

oraclejdkMatch1.6.0update71

oraclejdkMatch1.7.0update51

oraclejdkMatch1.8.0-

oraclejreMatch1.6.0update71

oraclejreMatch1.7.0update51

oraclejreMatch1.8.0-

Node

debiandebian_linuxMatch6.0

debiandebian_linuxMatch7.0

debiandebian_linuxMatch8.0

VendorProductVersionCPE
canonicalubuntu_linux10.04cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*
canonicalubuntu_linux12.04cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:-:*:*:*
canonicalubuntu_linux12.10cpe:2.3:o:canonical:ubuntu_linux:12.10:*:*:*:*:*:*:*
canonicalubuntu_linux13.10cpe:2.3:o:canonical:ubuntu_linux:13.10:*:*:*:*:*:*:*
canonicalubuntu_linux14.04cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*
oraclejdk1.6.0cpe:2.3:a:oracle:jdk:1.6.0:update71:*:*:*:*:*:*
oraclejdk1.7.0cpe:2.3:a:oracle:jdk:1.7.0:update51:*:*:*:*:*:*
oraclejdk1.8.0cpe:2.3:a:oracle:jdk:1.8.0:-:*:*:*:*:*:*
oraclejre1.6.0cpe:2.3:a:oracle:jre:1.6.0:update71:*:*:*:*:*:*
oraclejre1.7.0cpe:2.3:a:oracle:jre:1.7.0:update51:*:*:*:*:*:*

Vendor	Product	Version	CPE
canonical	ubuntu_linux	10.04	cpe:2.3:o:canonical:ubuntu_linux:10.04::::-:::
canonical	ubuntu_linux	12.04	cpe:2.3:o:canonical:ubuntu_linux:12.04::::-:::
canonical	ubuntu_linux	12.10	cpe:2.3:o:canonical:ubuntu_linux:12.10:::::::*
canonical	ubuntu_linux	13.10	cpe:2.3:o:canonical:ubuntu_linux:13.10:::::::*
canonical	ubuntu_linux	14.04	cpe:2.3:o:canonical:ubuntu_linux:14.04::::esm:::
oracle	jdk	1.6.0	cpe:2.3:a:oracle:jdk:1.6.0:update71::::::
oracle	jdk	1.7.0	cpe:2.3:a:oracle:jdk:1.7.0:update51::::::
oracle	jdk	1.8.0	cpe:2.3:a:oracle:jdk:1.8.0:-::::::
oracle	jre	1.6.0	cpe:2.3:a:oracle:jre:1.6.0:update71::::::
oracle	jre	1.7.0	cpe:2.3:a:oracle:jre:1.7.0:update51::::::