6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.027 Low
EPSS
Percentile
90.5%
Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20,
and Java SE Embedded 7u60, allows remote attackers to affect
confidentiality, integrity, and availability via unknown vectors related to
Libraries.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 10.04 | noarch | openjdk-6 | < 6b33-1.13.5-1ubuntu0.10.04 | UNKNOWN |
ubuntu | 12.04 | noarch | openjdk-6 | < 6b33-1.13.5-1ubuntu0.12.04 | UNKNOWN |
ubuntu | 14.04 | noarch | openjdk-6 | < 6b33-1.13.5-1ubuntu0.14.04 | UNKNOWN |
ubuntu | 12.04 | noarch | openjdk-7 | < 7u71-2.5.3-0ubuntu0.12.04.1 | UNKNOWN |
ubuntu | 14.04 | noarch | openjdk-7 | < 7u71-2.5.3-0ubuntu0.14.04.1 | UNKNOWN |
ubuntu | 14.10 | noarch | openjdk-7 | < 7u71-2.5.3-0ubuntu1 | UNKNOWN |
www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html
launchpad.net/bugs/cve/CVE-2014-6506
nvd.nist.gov/vuln/detail/CVE-2014-6506
security-tracker.debian.org/tracker/CVE-2014-6506
ubuntu.com/security/notices/USN-2386-1
ubuntu.com/security/notices/USN-2388-1
ubuntu.com/security/notices/USN-2388-2
www.cve.org/CVERecord?id=CVE-2014-6506