Home > Vulnerability Database > CVE-2014-6587

WhiteSource Vulnerability Database

New vulnerability? Tell us about it!

CVE-2014-6587

Good to know:

Date: January 21, 2015

Unspecified vulnerability in Oracle Java SE 6u85, 7u72, and 8u25 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Libraries.

Severity Score

5.3

Related Resources (5)

Url: http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00024.html

Url: http://rhn.redhat.com/errata/RHSA-2015-0079.html

Url: http://rhn.redhat.com/errata/RHSA-2015-0264.html

Url: https://nvd.nist.gov/vuln/detail/CVE-2014-6587

Url: http://marc.info/?l=bugtraq&m=142607790919348&w=2

Severity Score

5.3

Weakness Type (CWE)

Insufficient Information

NVD-CWE-noinfo

Top Fix

Upgrade Version

CVSS v3.1

Base Score:	5.3
Attack Vector (AV):	LOCAL
Attack Complexity (AC):	LOW
Privileges Required (PR):	LOW
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	LOW
Integrity (I):	LOW
Availability (A):	LOW

CVSS v2

Base Score:	4.3
Access Vector (AV):	LOCAL
Access Complexity (AC):	LOW
Authentication (AU):	SINGLE
Confidentiality (C):	PARTIAL
Integrity (I):	PARTIAL
Availability (A):	PARTIAL
Additional information:

Do you need more information?

Contact Us