CVE-2014-0411 : Detail

CVE-2014-0411

0.83%V3
Network
2014-01-15
01h50 +00:00
2018-01-04
18h57 +00:00
Notifications for a CVE
Stay informed of any changes for a specific CVE.
Notifications manage

CVE Descriptions

Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45; JRockit R27.7.7 and R28.2.9; Java SE Embedded 7u45; and OpenJDK 7 allows remote attackers to affect confidentiality and integrity via vectors related to JSSE. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that this issue allows remote attackers to obtain sensitive information about encryption keys via a timing discrepancy during the TLS/SSL handshake.

CVE Informations

Related Weaknesses

CWE-ID Weakness Name Source
CWE Other No informations.

Metrics

Metrics Score Severity CVSS Vector Source
V2 4 AV:N/AC:H/Au:N/C:P/I:P/A:N [email protected]

EPSS

EPSS is a scoring model that predicts the likelihood of a vulnerability being exploited.

EPSS Score

The EPSS model produces a probability score between 0 and 1 (0 and 100%). The higher the score, the greater the probability that a vulnerability will be exploited.

EPSS Percentile

The percentile is used to rank CVE according to their EPSS score. For example, a CVE in the 95th percentile according to its EPSS score is more likely to be exploited than 95% of other CVE. Thus, the percentile is used to compare the EPSS score of a CVE with that of other CVE.

Products Mentioned

Configuraton 0

Oracle>>Jrockit >> Version r27.7.7

Oracle>>Jrockit >> Version r28.2.9

Configuraton 0

Oracle>>Jre >> Version 1.7.0

Configuraton 0

Oracle>>Jdk >> Version 1.5.0

Oracle>>Jre >> Version 1.5.0

Configuraton 0

Oracle>>Jdk >> Version 1.6.0

Oracle>>Jre >> Version 1.6.0

References

http://secunia.com/advisories/56432
Tags : third-party-advisory, x_refsource_SECUNIA
https://access.redhat.com/errata/RHSA-2014:0414
Tags : vendor-advisory, x_refsource_REDHAT
http://secunia.com/advisories/59705
Tags : third-party-advisory, x_refsource_SECUNIA
http://secunia.com/advisories/59324
Tags : third-party-advisory, x_refsource_SECUNIA
http://rhn.redhat.com/errata/RHSA-2014-0136.html
Tags : vendor-advisory, x_refsource_REDHAT
http://marc.info/?l=bugtraq&m=139402749111889&w=2
Tags : vendor-advisory, x_refsource_HP
http://rhn.redhat.com/errata/RHSA-2014-0135.html
Tags : vendor-advisory, x_refsource_REDHAT
http://secunia.com/advisories/59251
Tags : third-party-advisory, x_refsource_SECUNIA
http://secunia.com/advisories/56535
Tags : third-party-advisory, x_refsource_SECUNIA
http://www.ubuntu.com/usn/USN-2089-1
Tags : vendor-advisory, x_refsource_UBUNTU
http://secunia.com/advisories/59194
Tags : third-party-advisory, x_refsource_SECUNIA
http://secunia.com/advisories/60498
Tags : third-party-advisory, x_refsource_SECUNIA
http://secunia.com/advisories/60833
Tags : third-party-advisory, x_refsource_SECUNIA
http://rhn.redhat.com/errata/RHSA-2014-0030.html
Tags : vendor-advisory, x_refsource_REDHAT
http://rhn.redhat.com/errata/RHSA-2014-0097.html
Tags : vendor-advisory, x_refsource_REDHAT
http://secunia.com/advisories/60005
Tags : third-party-advisory, x_refsource_SECUNIA
http://secunia.com/advisories/60835
Tags : third-party-advisory, x_refsource_SECUNIA
http://secunia.com/advisories/56485
Tags : third-party-advisory, x_refsource_SECUNIA
http://secunia.com/advisories/57809
Tags : third-party-advisory, x_refsource_SECUNIA
http://www.securityfocus.com/bid/64918
Tags : vdb-entry, x_refsource_BID
http://secunia.com/advisories/59071
Tags : third-party-advisory, x_refsource_SECUNIA
http://marc.info/?l=bugtraq&m=139402697611681&w=2
Tags : vendor-advisory, x_refsource_HP
http://secunia.com/advisories/59339
Tags : third-party-advisory, x_refsource_SECUNIA
http://secunia.com/advisories/59872
Tags : third-party-advisory, x_refsource_SECUNIA
http://secunia.com/advisories/59283
Tags : third-party-advisory, x_refsource_SECUNIA
http://marc.info/?l=bugtraq&m=139402697611681&w=2
Tags : vendor-advisory, x_refsource_HP
http://rhn.redhat.com/errata/RHSA-2014-0027.html
Tags : vendor-advisory, x_refsource_REDHAT
http://secunia.com/advisories/56486
Tags : third-party-advisory, x_refsource_SECUNIA
http://marc.info/?l=bugtraq&m=139402749111889&w=2
Tags : vendor-advisory, x_refsource_HP
http://secunia.com/advisories/59254
Tags : third-party-advisory, x_refsource_SECUNIA
http://www.securitytracker.com/id/1029608
Tags : vdb-entry, x_refsource_SECTRACK
http://secunia.com/advisories/59665
Tags : third-party-advisory, x_refsource_SECUNIA
http://www.ubuntu.com/usn/USN-2124-1
Tags : vendor-advisory, x_refsource_UBUNTU
http://secunia.com/advisories/56487
Tags : third-party-advisory, x_refsource_SECUNIA
http://secunia.com/advisories/59037
Tags : third-party-advisory, x_refsource_SECUNIA
http://secunia.com/advisories/59082
Tags : third-party-advisory, x_refsource_SECUNIA
http://osvdb.org/102028
Tags : vdb-entry, x_refsource_OSVDB
http://rhn.redhat.com/errata/RHSA-2014-0026.html
Tags : vendor-advisory, x_refsource_REDHAT
http://www.securityfocus.com/bid/64758
Tags : vdb-entry, x_refsource_BID
http://secunia.com/advisories/59704
Tags : third-party-advisory, x_refsource_SECUNIA
http://secunia.com/advisories/60836
Tags : third-party-advisory, x_refsource_SECUNIA
http://rhn.redhat.com/errata/RHSA-2014-0134.html
Tags : vendor-advisory, x_refsource_REDHAT
http://secunia.com/advisories/59235
Tags : third-party-advisory, x_refsource_SECUNIA