CVE-2014-2401

Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JavaFX 2.2.51; and Java SE Embedded 7u51 allows remote attackers to affect confidentiality via unknown vectors related to 2D.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 83%
Affected Products (NVD)
VendorProductVersion
oraclejavafx
2.2.51
oraclejdk
1.5.0
oraclejdk
1.6.0
oraclejdk
1.7.0
oraclejdk
1.8.0
oraclejre
1.5.0
oraclejre
1.6.0
oraclejre
1.7.0
oraclejre
1.8.0
ibmforms_viewer
4.0.0 ≤
𝑥
< 4.0.0.3
ibmforms_viewer
8.0.0 ≤
𝑥
< 8.0.1.1
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
openjdk-6
lucid
not-affected
precise
not-affected
quantal
not-affected
saucy
not-affected
trusty
dne
openjdk-6b18
lucid
ignored
precise
dne
quantal
dne
saucy
dne
trusty
dne
openjdk-7
lucid
dne
precise
not-affected
quantal
not-affected
saucy
not-affected
trusty
dne
Red Hat logo
Red Hat Enterprise Linux Releases
Red Hat Product
Release
java-1.5.0-ibm
RHEL 6
1:1.5.0.16.6-1jpp.1.el6_5
fixed
java-1.5.0-ibm-demo
RHEL 6
1:1.5.0.16.6-1jpp.1.el6_5
fixed
java-1.5.0-ibm-devel
RHEL 6
1:1.5.0.16.6-1jpp.1.el6_5
fixed
java-1.5.0-ibm-javacomm
RHEL 6
1:1.5.0.16.6-1jpp.1.el6_5
fixed
java-1.5.0-ibm-jdbc
RHEL 6
1:1.5.0.16.6-1jpp.1.el6_5
fixed
java-1.5.0-ibm-plugin
RHEL 6
1:1.5.0.16.6-1jpp.1.el6_5
fixed
java-1.5.0-ibm-src
RHEL 6
1:1.5.0.16.6-1jpp.1.el6_5
fixed
java-1.6.0-ibm
RHEL 6
1:1.6.0.16.0-1jpp.1.el6_5
fixed
java-1.6.0-ibm-demo
RHEL 6
1:1.6.0.16.0-1jpp.1.el6_5
fixed
java-1.6.0-ibm-devel
RHEL 6
1:1.6.0.16.0-1jpp.1.el6_5
fixed
java-1.6.0-ibm-javacomm
RHEL 6
1:1.6.0.16.0-1jpp.1.el6_5
fixed
java-1.6.0-ibm-jdbc
RHEL 6
1:1.6.0.16.0-1jpp.1.el6_5
fixed
java-1.6.0-ibm-plugin
RHEL 6
1:1.6.0.16.0-1jpp.1.el6_5
fixed
java-1.6.0-ibm-src
RHEL 6
1:1.6.0.16.0-1jpp.1.el6_5
fixed
java-1.7.0-ibm
RHEL 6
1:1.7.0.7.0-1jpp.1.el6_5
fixed
java-1.7.0-ibm-demo
RHEL 6
1:1.7.0.7.0-1jpp.1.el6_5
fixed
java-1.7.0-ibm-devel
RHEL 6
1:1.7.0.7.0-1jpp.1.el6_5
fixed
java-1.7.0-ibm-jdbc
RHEL 6
1:1.7.0.7.0-1jpp.1.el6_5
fixed
java-1.7.0-ibm-plugin
RHEL 6
1:1.7.0.7.0-1jpp.1.el6_5
fixed
java-1.7.0-ibm-src
RHEL 6
1:1.7.0.7.0-1jpp.1.el6_5
fixed
java-1.7.0-oracle
RHEL 6
1:1.7.0.55-1jpp.1.el6_5
fixed
java-1.7.0-oracle-devel
RHEL 6
1:1.7.0.55-1jpp.1.el6_5
fixed
java-1.7.0-oracle-javafx
RHEL 6
1:1.7.0.55-1jpp.1.el6_5
fixed
java-1.7.0-oracle-jdbc
RHEL 6
1:1.7.0.55-1jpp.1.el6_5
fixed
java-1.7.0-oracle-plugin
RHEL 6
1:1.7.0.55-1jpp.1.el6_5
fixed
java-1.7.0-oracle-src
RHEL 6
1:1.7.0.55-1jpp.1.el6_5
fixed
java-1.7.1-ibm
RHEL 7
1:1.7.1.1.0-1jpp.2.el7_0
fixed
java-1.7.1-ibm-demo
RHEL 7
1:1.7.1.1.0-1jpp.2.el7_0
fixed
java-1.7.1-ibm-devel
RHEL 7
1:1.7.1.1.0-1jpp.2.el7_0
fixed
java-1.7.1-ibm-jdbc
RHEL 7
1:1.7.1.1.0-1jpp.2.el7_0
fixed
java-1.7.1-ibm-plugin
RHEL 7
1:1.7.1.1.0-1jpp.2.el7_0
fixed
java-1.7.1-ibm-src
RHEL 7
1:1.7.1.1.0-1jpp.2.el7_0
fixed
References
http://marc.info/?l=bugtraq&m=140852886808946&w=2
http://marc.info/?l=bugtraq&m=140852974709252&w=2
http://secunia.com/advisories/58974
http://secunia.com/advisories/59058
http://security.gentoo.org/glsa/glsa-201502-12.xml
http://www-01.ibm.com/support/docview.wss?uid=swg21672080
http://www-01.ibm.com/support/docview.wss?uid=swg21676746
http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html
http://www.securityfocus.com/bid/66911
https://access.redhat.com/errata/RHSA-2014:0413
https://access.redhat.com/errata/RHSA-2014:0414
https://www.ibm.com/support/docview.wss?uid=swg21675973
http://marc.info/?l=bugtraq&m=140852886808946&w=2
http://marc.info/?l=bugtraq&m=140852974709252&w=2
http://secunia.com/advisories/58974
http://secunia.com/advisories/59058
http://security.gentoo.org/glsa/glsa-201502-12.xml
http://www-01.ibm.com/support/docview.wss?uid=swg21672080
http://www-01.ibm.com/support/docview.wss?uid=swg21676746
http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html
http://www.securityfocus.com/bid/66911
https://access.redhat.com/errata/RHSA-2014:0413
https://access.redhat.com/errata/RHSA-2014:0414
https://www.ibm.com/support/docview.wss?uid=swg21675973