Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9.3
CVSSv2

CVE-2014-2483

Published: 17/07/2014 Updated: 13/05/2022
CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6
VMScore: 828
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Subscribe to Enterprise Linux

Vulnerability Summary

Unspecified vulnerability in the Java SE component in Oracle Java SE Java SE 7u60 and OpenJDK 7 allows remote malicious users to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2014-4223. NOTE: the previous information is from the July 2014 CPU. Oracle has not commented on another vendor's claim that the issue is related to improper restriction of the "use of privileged annotations."

Vulnerable Product Search on Vulmon Subscribe to Product

redhat enterprise linux 7.0

redhat enterprise linux 6.0

debian debian linux 7.0

redhat enterprise linux 5

oracle openjdk 1.7.0

oracle jdk 1.7.0

oracle jre 1.7.0

Vendor Advisories

Ubuntu Security Notice: openjdk-7 vulnerabilities
Several security issues were fixed in OpenJDK 7 ...
Ubuntu Security Notice: openjdk-7 update
This update provides stability updates for OpenJDK 7 ...
Ubuntu Security Notice: openjdk-7 regression
USN-2319-1 introduced a regression in OpenJDK 7 ...
Amazon Linux AMI: ALAS-2014-383
It was discovered that the Hotspot component in OpenJDK did not properly verify bytecode from the class files An untrusted Java application or applet could possibly use these flaws to bypass Java sandbox restrictions (CVE-2014-4216, CVE-2014-4219) A format string flaw was discovered in the Hotspot component event logger in OpenJDK An untrusted J ...
Red Hat: CVE-2014-2483
Unspecified vulnerability in the Java SE component in Oracle Java SE Java SE 7u60 and OpenJDK 7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2014-4223 NOTE: the previous information is from the July 2014 CPU Oracle has not commented on a ...

References

NVD-CWE-noinfohttp://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.htmlhttp://hg.openjdk.java.net/jdk7u/jdk7u/hotspot/rev/848481af9003https://bugzilla.redhat.com/show_bug.cgi?id=1119626http://www.debian.org/security/2014/dsa-2987http://www.vmware.com/security/advisories/VMSA-2014-0012.htmlhttp://seclists.org/fulldisclosure/2014/Dec/23http://security.gentoo.org/glsa/glsa-201502-12.xmlhttp://marc.info/?l=bugtraq&m=140852886808946&w=2http://www.securitytracker.com/id/1030577http://www.securityfocus.com/bid/68608http://secunia.com/advisories/60812http://secunia.com/advisories/60485https://access.redhat.com/errata/RHSA-2014:0902http://www.securityfocus.com/archive/1/534161/100/0/threadedhttps://nvd.nist.govhttps://usn.ubuntu.com/2319-1/https://access.redhat.com/security/cve/cve-2014-2483
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereferenceCVE-2023-52689CVE-2024-23803client sideCVE-2023-52696information disclosureCVE-2024-35843CVE-2024-27130CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook