CVE-2014-2423
Description
Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAX-WS, a different vulnerability than CVE-2014-0452 and CVE-2014-0458.
Risk Information
Base Score
9.8
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
4.322
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Multiple vulnerabilities affected in Java jdk (x64) 8.0(x64) | Windows |
| Multiple vulnerabilities affected in Java jdk 8.0 | Windows |
| Multiple vulnerabilities affected in Java jre (x64) 8.0(x64) | Windows |
| Multiple vulnerabilities affected in Java jre 8.0 | Windows |
| Multiple Vulnerabilities affected in hp-ux b.11.31 | NCM |
| Multiple Vulnerabilities affected in hp-ux b.11.23 | NCM |
| CVE-2014-2423 | NCM |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-333701 | Java SE Development Kit 8 Update 391 (64-bit) (8.0.3910.13) (JDK) (Manual Upload Required) |
| PATCH-333702 | Java SE Development Kit 8 Update 391 (32-bit) (8.0.3910.13) (JDK) (Manual Upload Required) |
| PATCH-349782 | Java Runtime Environment 1.8 (x64) (8.0.4610.11) (Manual Upload Required) |
| PATCH-306097 | Update for Java Runtime Environment (1.8.141) |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234