Home

CVE-2014-6457

Description

Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20; Java SE Embedded 7u60; and JRockit R27.8.3, and R28.3.3 allows remote attackers to affect confidentiality and integrity via vectors related to JSSE.

Risk Information

Base Score
8.2
MODERATE
Vector
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N
EPSS Score
Exploitation Probability
10.612

Associated Vulnerability

VulnerabilityOS Platform
Multiple vulnerabilities affected in Java jdk (x64) 8.0(x64)Windows
Multiple vulnerabilities affected in Java jdk 8.0Windows
Multiple vulnerabilities affected in Java jre (x64) 8.0(x64)Windows
Multiple vulnerabilities affected in Java jre 8.0Windows
Multiple Vulnerabilities are affected in IBM Tivoli Monitoring 6.2.2Windows
Multiple Vulnerabilities are affected in IBM Tivoli Monitoring 6.2.3Windows
Multiple Vulnerabilities are affected in IBM Tivoli Monitoring 6.2.0Windows
Multiple Vulnerabilities are affected in IBM Tivoli Monitoring 6.2.1Windows
Multiple Vulnerabilities are affected in IBM Tivoli Monitoring 6.3.0Windows

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-333701Java SE Development Kit 8 Update 391 (64-bit) (8.0.3910.13) (JDK) (Manual Upload Required)
PATCH-333702Java SE Development Kit 8 Update 391 (32-bit) (8.0.3910.13) (JDK) (Manual Upload Required)
PATCH-349782Java Runtime Environment 1.8 (x64) (8.0.4610.11) (Manual Upload Required)
PATCH-306097Update for Java Runtime Environment (1.8.141)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234