Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9.3
CVSSv2

CVE-2014-2490

Published: 17/07/2014 Updated: 13/05/2022
CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6
VMScore: 828
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Subscribe to Hp-ux

Vulnerability Summary

Unspecified vulnerability in the Java SE component in Oracle Java SE 7u60 and SE 8u5 allows remote malicious users to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.

Vulnerable Product Search on Vulmon Subscribe to Product

hp hp-ux b.11.31

hp hp-ux b.11.23

debian debian linux 7.0

oracle jdk 1.8.0

oracle jdk 1.7.0

oracle jre 1.8.0

oracle jre 1.7.0

Vendor Advisories

Debian Security Advisories: DSA-2980-1 openjdk-6 -- security update
Several vulnerabilities have been discovered in OpenJDK, an implementation of the Oracle Java platform, resulting in the execution of arbitrary code, breakouts of the Java sandbox, information disclosure or denial of service For the stable distribution (wheezy), these problems have been fixed in version 6b32-1134-1~deb7u1 We recommend that you ...
Ubuntu Security Notice: openjdk-7 vulnerabilities
Several security issues were fixed in OpenJDK 7 ...
Ubuntu Security Notice: openjdk-6 vulnerabilities
Several security issues were fixed in OpenJDK 6 ...
Ubuntu Security Notice: openjdk-7 update
This update provides stability updates for OpenJDK 7 ...
Ubuntu Security Notice: openjdk-7 regression
USN-2319-1 introduced a regression in OpenJDK 7 ...
Amazon Linux AMI: ALAS-2014-383
It was discovered that the Hotspot component in OpenJDK did not properly verify bytecode from the class files An untrusted Java application or applet could possibly use these flaws to bypass Java sandbox restrictions (CVE-2014-4216, CVE-2014-4219) A format string flaw was discovered in the Hotspot component event logger in OpenJDK An untrusted J ...
Amazon Linux AMI: ALAS-2014-387
It was discovered that the Hotspot component in OpenJDK did not properly verify bytecode from the class files An untrusted Java application or applet could possibly use these flaws to bypass Java sandbox restrictions (CVE-2014-4216, CVE-2014-4219) A format string flaw was discovered in the Hotspot component event logger in OpenJDK An untrusted J ...
Red Hat: CVE-2014-2490
Unspecified vulnerability in the Java SE component in Oracle Java SE 7u60 and SE 8u5 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot ...

References

NVD-CWE-noinfohttp://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.htmlhttp://www.debian.org/security/2014/dsa-2980http://www.debian.org/security/2014/dsa-2987http://www.vmware.com/security/advisories/VMSA-2014-0012.htmlhttp://seclists.org/fulldisclosure/2014/Dec/23http://security.gentoo.org/glsa/glsa-201502-12.xmlhttp://marc.info/?l=bugtraq&m=140852886808946&w=2http://www.securitytracker.com/id/1030577http://www.securityfocus.com/bid/68645http://secunia.com/advisories/60812http://secunia.com/advisories/60485http://secunia.com/advisories/60129https://access.redhat.com/errata/RHSA-2014:0902http://www.securityfocus.com/archive/1/534161/100/0/threadedhttps://nvd.nist.govhttps://www.debian.org/security/./dsa-2980https://usn.ubuntu.com/2319-1/https://access.redhat.com/security/cve/cve-2014-2490
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-2907hardcodedinjectCVE-2024-20359CVE-2024-2467CVE-2024-4077CVE-2024-22391cameraCVE-2024-20353
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook