5.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
0.008 Low
EPSS
Percentile
81.3%
Unspecified vulnerability in Oracle Java SE 6u65 and 7u45 allows remote
attackers to affect confidentiality and integrity via unknown vectors
related to Deployment, a different vulnerability than CVE-2014-0375 and
CVE-2014-0403.
Author | Note |
---|---|
mdeslaur | in lucid+, NetX and the plugin moved to the icedtea-web package |
jdstrand | sun-java6 is not redistributable, no longer in the archive and no longer tracked sun-java5 is EOL upstream and no longer tracked Based on Oracle advisory and lack of fixes from OpenJDK, marking as ‘not-affected’ for now (which is the best we can do until more information comes to light) |