CVE-2014-3086

Unspecified vulnerability in the IBM Java Virtual Machine, as used in IBM WebSphere Real Time 3 before Service Refresh 7 FP1 and other products, allows remote attackers to gain privileges by leveraging the ability to execute code in the context of a security manager.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 86%
Affected Products (NVD)
VendorProductVersion
ibmlotus_notes
8.5.3.0
ibmlotus_notes
9.0.1.0
ibmlotus_domino
8.5.3.0
ibmlotus_domino
9.0.1.0
ibmwebsphere_real_time
3.0
𝑥
= Vulnerable software versions
Red Hat logo
Red Hat Enterprise Linux Releases
Red Hat Product
Release
java-1.5.0-ibm
RHEL 6
1:1.5.0.16.7-1jpp.1.el6_5
fixed
java-1.5.0-ibm-demo
RHEL 6
1:1.5.0.16.7-1jpp.1.el6_5
fixed
java-1.5.0-ibm-devel
RHEL 6
1:1.5.0.16.7-1jpp.1.el6_5
fixed
java-1.5.0-ibm-javacomm
RHEL 6
1:1.5.0.16.7-1jpp.1.el6_5
fixed
java-1.5.0-ibm-jdbc
RHEL 6
1:1.5.0.16.7-1jpp.1.el6_5
fixed
java-1.5.0-ibm-plugin
RHEL 6
1:1.5.0.16.7-1jpp.1.el6_5
fixed
java-1.5.0-ibm-src
RHEL 6
1:1.5.0.16.7-1jpp.1.el6_5
fixed
java-1.6.0-ibm
RHEL 6
1:1.6.0.16.1-1jpp.1.el6_5
fixed
java-1.6.0-ibm-demo
RHEL 6
1:1.6.0.16.1-1jpp.1.el6_5
fixed
java-1.6.0-ibm-devel
RHEL 6
1:1.6.0.16.1-1jpp.1.el6_5
fixed
java-1.6.0-ibm-javacomm
RHEL 6
1:1.6.0.16.1-1jpp.1.el6_5
fixed
java-1.6.0-ibm-jdbc
RHEL 6
1:1.6.0.16.1-1jpp.1.el6_5
fixed
java-1.6.0-ibm-plugin
RHEL 6
1:1.6.0.16.1-1jpp.1.el6_5
fixed
java-1.6.0-ibm-src
RHEL 6
1:1.6.0.16.1-1jpp.1.el6_5
fixed
java-1.7.0-ibm
RHEL 6
1:1.7.0.7.1-1jpp.1.el6_5
fixed
java-1.7.0-ibm-demo
RHEL 6
1:1.7.0.7.1-1jpp.1.el6_5
fixed
java-1.7.0-ibm-devel
RHEL 6
1:1.7.0.7.1-1jpp.1.el6_5
fixed
java-1.7.0-ibm-jdbc
RHEL 6
1:1.7.0.7.1-1jpp.1.el6_5
fixed
java-1.7.0-ibm-plugin
RHEL 6
1:1.7.0.7.1-1jpp.1.el6_5
fixed
java-1.7.0-ibm-src
RHEL 6
1:1.7.0.7.1-1jpp.1.el6_5
fixed
java-1.7.1-ibm
RHEL 7
1:1.7.1.1.1-1jpp.1.el7_0
fixed
java-1.7.1-ibm-demo
RHEL 7
1:1.7.1.1.1-1jpp.1.el7_0
fixed
java-1.7.1-ibm-devel
RHEL 7
1:1.7.1.1.1-1jpp.1.el7_0
fixed
java-1.7.1-ibm-jdbc
RHEL 7
1:1.7.1.1.1-1jpp.1.el7_0
fixed
java-1.7.1-ibm-plugin
RHEL 7
1:1.7.1.1.1-1jpp.1.el7_0
fixed
java-1.7.1-ibm-src
RHEL 7
1:1.7.1.1.1-1jpp.1.el7_0
fixed
References
http://secunia.com/advisories/59680
http://secunia.com/advisories/60081
http://secunia.com/advisories/60317
http://secunia.com/advisories/60622
http://secunia.com/advisories/61577
http://secunia.com/advisories/61640
http://www-01.ibm.com/support/docview.wss?uid=swg1IV62634
http://www-01.ibm.com/support/docview.wss?uid=swg21680333
http://www-01.ibm.com/support/docview.wss?uid=swg21680334
http://www-01.ibm.com/support/docview.wss?uid=swg21686383
http://www-01.ibm.com/support/docview.wss?uid=swg21686824
http://www.securityfocus.com/bid/69183
https://exchange.xforce.ibmcloud.com/vulnerabilities/94097
http://secunia.com/advisories/59680
http://secunia.com/advisories/60081
http://secunia.com/advisories/60317
http://secunia.com/advisories/60622
http://secunia.com/advisories/61577
http://secunia.com/advisories/61640
http://www-01.ibm.com/support/docview.wss?uid=swg1IV62634
http://www-01.ibm.com/support/docview.wss?uid=swg21680333
http://www-01.ibm.com/support/docview.wss?uid=swg21680334
http://www-01.ibm.com/support/docview.wss?uid=swg21686383
http://www-01.ibm.com/support/docview.wss?uid=swg21686824
http://www.securityfocus.com/bid/69183
https://exchange.xforce.ibmcloud.com/vulnerabilities/94097