CVE-2014-0403
Published Jan 15, 2014
Last updated 3 years ago
Overview
- Description
- Unspecified vulnerability in Oracle Java SE 6u65 and 7u45 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2013-5898 and CVE-2014-0375.
- Source
- secalert_us@oracle.com
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 5.8
- Impact score
- 4.9
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:P/I:P/A:N
Weaknesses
- nvd@nist.gov
- NVD-CWE-noinfo
Evaluator
- Comment
- Per: http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html "Applies to client deployment of Java only. This vulnerability can be exploited only through sandboxed Java Web Start applications and sandboxed Java applets."
- Impact
- -
- Solution
- -
Configurations
[ { "nodes": [ { "negate": false, "cpeMatch": [ { "criteria": "cpe:2.3:a:oracle:jre:1.7.0:update45:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A5226952-1972-4572-9F8C-C90D89040FD3" } ], "operator": "OR" } ] }, { "nodes": [ { "negate": false, "cpeMatch": [ { "criteria": "cpe:2.3:a:oracle:jdk:1.6.0:update65:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "105B15BC-6764-41C3-847D-BA1396CC034F" }, { "criteria": "cpe:2.3:a:oracle:jre:1.6.0:update65:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BBCFEADF-7282-4C56-813B-A5DEAD9BF17B" } ], "operator": "OR" } ] } ]