Home > Vulnerability Database > CVE-2014-6458

WhiteSource Vulnerability Database

New vulnerability? Tell us about it!

CVE-2014-6458

Good to know:

Date: October 15, 2014

Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.

Severity Score

7.4

Related Resources (5)

Url: http://secunia.com/advisories/61635

Url: http://marc.info/?l=bugtraq&m=141775382904016&w=2

Url: http://www-01.ibm.com/support/docview.wss?uid=swg21688283

Url: http://rhn.redhat.com/errata/RHSA-2014-1657.html

Url: https://nvd.nist.gov/vuln/detail/CVE-2014-6458

Severity Score

7.4

Weakness Type (CWE)

Insufficient Information

NVD-CWE-noinfo

Top Fix

Upgrade Version

CVSS v3.1

Base Score:	7.4
Attack Vector (AV):	LOCAL
Attack Complexity (AC):	HIGH
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	HIGH
Integrity (I):	HIGH
Availability (A):	HIGH

CVSS v2

Base Score:	6.9
Access Vector (AV):	LOCAL
Access Complexity (AC):	MEDIUM
Authentication (AU):	NONE
Confidentiality (C):	COMPLETE
Integrity (I):	COMPLETE
Availability (A):	COMPLETE
Additional information:

Do you need more information?

Contact Us