{"url":"http://public2.vulnerablecode.io/api/packages/275987?format=json","purl":"pkg:rpm/redhat/java-1.6.0-openjdk@1:1.6.0.33-1.13.5.0?arch=el5_11","type":"rpm","namespace":"redhat","name":"java-1.6.0-openjdk","version":"1:1.6.0.33-1.13.5.0","qualifiers":{"arch":"el5_11"},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/68290?format=json","vulnerability_id":"VCID-1mad-v369-jbe3","summary":"OpenJDK: insufficient ResourceBundle name check (Libraries, 8044274)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-6531.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-6531.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-6531","reference_id":"","reference_type":"","scores":[{"value":"0.02643","scoring_system":"epss","scoring_elements":"0.85973","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-6531"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6457","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6457"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6502","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6502"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6504","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6504"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6506","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6506"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6511","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6511"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6512","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6512"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6517","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6517"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6519","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6519"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6531","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6531"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6558","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6558"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1150651","reference_id":"1150651","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1150651"},{"reference_url":"https://security.gentoo.org/glsa/201502-12","reference_id":"GLSA-201502-12","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201502-12"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1620","reference_id":"RHSA-2014:1620","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1620"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1633","reference_id":"RHSA-2014:1633","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1633"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1634","reference_id":"RHSA-2014:1634","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1634"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1636","reference_id":"RHSA-2014:1636","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1636"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1657","reference_id":"RHSA-2014:1657","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1657"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1658","reference_id":"RHSA-2014:1658","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1658"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1876","reference_id":"RHSA-2014:1876","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1876"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1877","reference_id":"RHSA-2014:1877","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1877"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1880","reference_id":"RHSA-2014:1880","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1880"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1881","reference_id":"RHSA-2014:1881","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1881"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1882","reference_id":"RHSA-2014:1882","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1882"},{"reference_url":"https://access.redhat.com/errata/RHSA-2015:0264","reference_id":"RHSA-2015:0264","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2015:0264"},{"reference_url":"https://usn.ubuntu.com/2386-1/","reference_id":"USN-2386-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2386-1/"},{"reference_url":"https://usn.ubuntu.com/2388-1/","reference_id":"USN-2388-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2388-1/"},{"reference_url":"https://usn.ubuntu.com/2388-2/","reference_id":"USN-2388-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2388-2/"}],"fixed_packages":[],"aliases":["CVE-2014-6531"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-1mad-v369-jbe3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/68289?format=json","vulnerability_id":"VCID-37tp-ycx3-uuc1","summary":"OpenJDK: missing BootstrapMethods bounds check (Hotspot, 8041717)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-6519.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-6519.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-6519","reference_id":"","reference_type":"","scores":[{"value":"0.03119","scoring_system":"epss","scoring_elements":"0.87063","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-6519"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6457","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6457"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6502","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6502"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6504","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6504"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6506","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6506"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6511","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6511"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6512","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6512"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6517","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6517"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6519","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6519"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6531","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6531"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6558","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6558"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1150273","reference_id":"1150273","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1150273"},{"reference_url":"https://security.gentoo.org/glsa/201502-12","reference_id":"GLSA-201502-12","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201502-12"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1620","reference_id":"RHSA-2014:1620","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1620"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1633","reference_id":"RHSA-2014:1633","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1633"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1634","reference_id":"RHSA-2014:1634","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1634"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1636","reference_id":"RHSA-2014:1636","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1636"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1657","reference_id":"RHSA-2014:1657","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1657"},{"reference_url":"https://usn.ubuntu.com/2386-1/","reference_id":"USN-2386-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2386-1/"},{"reference_url":"https://usn.ubuntu.com/2388-1/","reference_id":"USN-2388-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2388-1/"},{"reference_url":"https://usn.ubuntu.com/2388-2/","reference_id":"USN-2388-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2388-2/"}],"fixed_packages":[],"aliases":["CVE-2014-6519"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-37tp-ycx3-uuc1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/68295?format=json","vulnerability_id":"VCID-7f7u-1nc9-5kbj","summary":"OpenJDK: StAX parser parameter entity XXE (JAXP, 8039533)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-6517.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-6517.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-6517","reference_id":"","reference_type":"","scores":[{"value":"0.02786","scoring_system":"epss","scoring_elements":"0.86322","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-6517"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6457","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6457"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6502","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6502"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6504","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6504"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6506","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6506"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6511","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6511"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6512","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6512"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6517","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6517"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6519","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6519"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6531","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6531"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6558","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6558"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1151364","reference_id":"1151364","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1151364"},{"reference_url":"https://security.gentoo.org/glsa/201502-12","reference_id":"GLSA-201502-12","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201502-12"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1620","reference_id":"RHSA-2014:1620","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1620"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1633","reference_id":"RHSA-2014:1633","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1633"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1634","reference_id":"RHSA-2014:1634","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1634"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1636","reference_id":"RHSA-2014:1636","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1636"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1657","reference_id":"RHSA-2014:1657","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1657"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1658","reference_id":"RHSA-2014:1658","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1658"},{"reference_url":"https://usn.ubuntu.com/2386-1/","reference_id":"USN-2386-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2386-1/"},{"reference_url":"https://usn.ubuntu.com/2388-1/","reference_id":"USN-2388-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2388-1/"},{"reference_url":"https://usn.ubuntu.com/2388-2/","reference_id":"USN-2388-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2388-2/"}],"fixed_packages":[],"aliases":["CVE-2014-6517"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-7f7u-1nc9-5kbj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/68288?format=json","vulnerability_id":"VCID-93bu-xekk-ubck","summary":"OpenJDK: incorrect optimization of range checks in C2 compiler (Hotspot, 8022783)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-6504.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-6504.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-6504","reference_id":"","reference_type":"","scores":[{"value":"0.02321","scoring_system":"epss","scoring_elements":"0.85057","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-6504"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6457","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6457"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6502","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6502"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6504","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6504"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6506","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6506"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6511","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6511"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6512","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6512"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6517","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6517"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6519","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6519"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6531","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6531"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6558","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6558"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1150182","reference_id":"1150182","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1150182"},{"reference_url":"https://security.gentoo.org/glsa/201502-12","reference_id":"GLSA-201502-12","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201502-12"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1620","reference_id":"RHSA-2014:1620","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1620"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1633","reference_id":"RHSA-2014:1633","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1633"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1634","reference_id":"RHSA-2014:1634","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1634"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1636","reference_id":"RHSA-2014:1636","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1636"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1657","reference_id":"RHSA-2014:1657","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1657"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1658","reference_id":"RHSA-2014:1658","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1658"},{"reference_url":"https://usn.ubuntu.com/2386-1/","reference_id":"USN-2386-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2386-1/"},{"reference_url":"https://usn.ubuntu.com/2388-1/","reference_id":"USN-2388-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2388-1/"},{"reference_url":"https://usn.ubuntu.com/2388-2/","reference_id":"USN-2388-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2388-2/"}],"fixed_packages":[],"aliases":["CVE-2014-6504"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-93bu-xekk-ubck"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/68283?format=json","vulnerability_id":"VCID-dpfq-tunq-3ub7","summary":"OpenJDK: DatagramSocket connected socket missing source check (Libraries, 8039509)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-6512.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-6512.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-6512","reference_id":"","reference_type":"","scores":[{"value":"0.03677","scoring_system":"epss","scoring_elements":"0.88108","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-6512"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6457","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6457"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6502","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6502"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6504","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6504"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6506","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6506"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6511","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6511"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6512","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6512"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6517","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6517"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6519","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6519"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6531","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6531"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6558","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6558"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1071210","reference_id":"1071210","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1071210"},{"reference_url":"https://security.gentoo.org/glsa/201502-12","reference_id":"GLSA-201502-12","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201502-12"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1620","reference_id":"RHSA-2014:1620","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1620"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1633","reference_id":"RHSA-2014:1633","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1633"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1634","reference_id":"RHSA-2014:1634","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1634"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1636","reference_id":"RHSA-2014:1636","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1636"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1657","reference_id":"RHSA-2014:1657","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1657"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1658","reference_id":"RHSA-2014:1658","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1658"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1876","reference_id":"RHSA-2014:1876","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1876"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1877","reference_id":"RHSA-2014:1877","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1877"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1880","reference_id":"RHSA-2014:1880","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1880"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1881","reference_id":"RHSA-2014:1881","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1881"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1882","reference_id":"RHSA-2014:1882","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1882"},{"reference_url":"https://access.redhat.com/errata/RHSA-2015:0264","reference_id":"RHSA-2015:0264","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2015:0264"},{"reference_url":"https://usn.ubuntu.com/2386-1/","reference_id":"USN-2386-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2386-1/"},{"reference_url":"https://usn.ubuntu.com/2388-1/","reference_id":"USN-2388-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2388-1/"},{"reference_url":"https://usn.ubuntu.com/2388-2/","reference_id":"USN-2388-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2388-2/"}],"fixed_packages":[],"aliases":["CVE-2014-6512"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-dpfq-tunq-3ub7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/68287?format=json","vulnerability_id":"VCID-dyk4-jb9u-eyca","summary":"OpenJDK: insufficient permission checks when setting resource bundle on system logger (Libraries, 8041564)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-6506.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-6506.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-6506","reference_id":"","reference_type":"","scores":[{"value":"0.07693","scoring_system":"epss","scoring_elements":"0.92033","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-6506"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6457","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6457"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6502","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6502"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6504","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6504"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6506","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6506"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6511","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6511"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6512","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6512"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6517","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6517"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6519","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6519"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6531","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6531"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6558","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6558"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1150155","reference_id":"1150155","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1150155"},{"reference_url":"https://security.gentoo.org/glsa/201502-12","reference_id":"GLSA-201502-12","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201502-12"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1620","reference_id":"RHSA-2014:1620","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1620"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1633","reference_id":"RHSA-2014:1633","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1633"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1634","reference_id":"RHSA-2014:1634","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1634"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1636","reference_id":"RHSA-2014:1636","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1636"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1657","reference_id":"RHSA-2014:1657","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1657"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1658","reference_id":"RHSA-2014:1658","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1658"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1876","reference_id":"RHSA-2014:1876","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1876"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1877","reference_id":"RHSA-2014:1877","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1877"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1880","reference_id":"RHSA-2014:1880","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1880"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1881","reference_id":"RHSA-2014:1881","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1881"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1882","reference_id":"RHSA-2014:1882","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1882"},{"reference_url":"https://access.redhat.com/errata/RHSA-2015:0264","reference_id":"RHSA-2015:0264","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2015:0264"},{"reference_url":"https://usn.ubuntu.com/2386-1/","reference_id":"USN-2386-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2386-1/"},{"reference_url":"https://usn.ubuntu.com/2388-1/","reference_id":"USN-2388-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2388-1/"},{"reference_url":"https://usn.ubuntu.com/2388-2/","reference_id":"USN-2388-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2388-2/"}],"fixed_packages":[],"aliases":["CVE-2014-6506"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-dyk4-jb9u-eyca"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/68291?format=json","vulnerability_id":"VCID-f5cn-qqcp-pfhz","summary":"OpenJDK: LogRecord use of incorrect CL when loading ResourceBundle (Libraries, 8042797)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-6502.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-6502.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-6502","reference_id":"","reference_type":"","scores":[{"value":"0.03022","scoring_system":"epss","scoring_elements":"0.86846","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-6502"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6457","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6457"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6502","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6502"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6504","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6504"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6506","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6506"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6511","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6511"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6512","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6512"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6517","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6517"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6519","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6519"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6531","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6531"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6558","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6558"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1150669","reference_id":"1150669","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1150669"},{"reference_url":"https://security.gentoo.org/glsa/201502-12","reference_id":"GLSA-201502-12","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201502-12"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1620","reference_id":"RHSA-2014:1620","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1620"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1633","reference_id":"RHSA-2014:1633","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1633"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1634","reference_id":"RHSA-2014:1634","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1634"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1636","reference_id":"RHSA-2014:1636","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1636"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1657","reference_id":"RHSA-2014:1657","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1657"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1658","reference_id":"RHSA-2014:1658","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1658"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1876","reference_id":"RHSA-2014:1876","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1876"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1877","reference_id":"RHSA-2014:1877","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1877"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1880","reference_id":"RHSA-2014:1880","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1880"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1881","reference_id":"RHSA-2014:1881","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1881"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1882","reference_id":"RHSA-2014:1882","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1882"},{"reference_url":"https://access.redhat.com/errata/RHSA-2015:0264","reference_id":"RHSA-2015:0264","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2015:0264"},{"reference_url":"https://usn.ubuntu.com/2386-1/","reference_id":"USN-2386-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2386-1/"},{"reference_url":"https://usn.ubuntu.com/2388-1/","reference_id":"USN-2388-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2388-1/"},{"reference_url":"https://usn.ubuntu.com/2388-2/","reference_id":"USN-2388-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2388-2/"}],"fixed_packages":[],"aliases":["CVE-2014-6502"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-f5cn-qqcp-pfhz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/68296?format=json","vulnerability_id":"VCID-hk8z-rhr5-xkd4","summary":"ICU: Layout Engine ContextualSubstitution missing boundary checks (JDK 2D, 8041540)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-6511.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-6511.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-6511","reference_id":"","reference_type":"","scores":[{"value":"0.02618","scoring_system":"epss","scoring_elements":"0.85905","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-6511"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6457","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6457"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6502","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6502"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6504","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6504"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6506","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6506"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6511","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6511"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6512","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6512"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6517","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6517"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6519","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6519"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6531","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6531"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6558","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6558"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1151517","reference_id":"1151517","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1151517"},{"reference_url":"https://security.gentoo.org/glsa/201502-12","reference_id":"GLSA-201502-12","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201502-12"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1620","reference_id":"RHSA-2014:1620","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1620"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1633","reference_id":"RHSA-2014:1633","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1633"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1634","reference_id":"RHSA-2014:1634","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1634"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1636","reference_id":"RHSA-2014:1636","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1636"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1657","reference_id":"RHSA-2014:1657","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1657"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1658","reference_id":"RHSA-2014:1658","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1658"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1876","reference_id":"RHSA-2014:1876","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1876"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1877","reference_id":"RHSA-2014:1877","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1877"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1880","reference_id":"RHSA-2014:1880","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1880"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1881","reference_id":"RHSA-2014:1881","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1881"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1882","reference_id":"RHSA-2014:1882","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1882"},{"reference_url":"https://access.redhat.com/errata/RHSA-2015:0264","reference_id":"RHSA-2015:0264","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2015:0264"},{"reference_url":"https://usn.ubuntu.com/2386-1/","reference_id":"USN-2386-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2386-1/"},{"reference_url":"https://usn.ubuntu.com/2388-1/","reference_id":"USN-2388-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2388-1/"},{"reference_url":"https://usn.ubuntu.com/2388-2/","reference_id":"USN-2388-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2388-2/"}],"fixed_packages":[],"aliases":["CVE-2014-6511"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-hk8z-rhr5-xkd4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/68293?format=json","vulnerability_id":"VCID-pyzf-j7mr-kqd5","summary":"OpenJDK: CipherInputStream incorrect exception handling (Security, 8037846)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-6558.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-6558.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-6558","reference_id":"","reference_type":"","scores":[{"value":"0.03022","scoring_system":"epss","scoring_elements":"0.86846","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-6558"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6457","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6457"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6502","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6502"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6504","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6504"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6506","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6506"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6511","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6511"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6512","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6512"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6517","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6517"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6519","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6519"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6531","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6531"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6558","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6558"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1151063","reference_id":"1151063","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1151063"},{"reference_url":"https://security.gentoo.org/glsa/201502-12","reference_id":"GLSA-201502-12","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201502-12"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1620","reference_id":"RHSA-2014:1620","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1620"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1633","reference_id":"RHSA-2014:1633","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1633"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1634","reference_id":"RHSA-2014:1634","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1634"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1636","reference_id":"RHSA-2014:1636","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1636"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1657","reference_id":"RHSA-2014:1657","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1657"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1658","reference_id":"RHSA-2014:1658","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1658"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1876","reference_id":"RHSA-2014:1876","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1876"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1877","reference_id":"RHSA-2014:1877","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1877"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1880","reference_id":"RHSA-2014:1880","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1880"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1881","reference_id":"RHSA-2014:1881","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1881"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1882","reference_id":"RHSA-2014:1882","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1882"},{"reference_url":"https://access.redhat.com/errata/RHSA-2015:0264","reference_id":"RHSA-2015:0264","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2015:0264"},{"reference_url":"https://usn.ubuntu.com/2386-1/","reference_id":"USN-2386-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2386-1/"},{"reference_url":"https://usn.ubuntu.com/2388-1/","reference_id":"USN-2388-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2388-1/"},{"reference_url":"https://usn.ubuntu.com/2388-2/","reference_id":"USN-2388-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2388-2/"}],"fixed_packages":[],"aliases":["CVE-2014-6558"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-pyzf-j7mr-kqd5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/68292?format=json","vulnerability_id":"VCID-xnq6-47vx-yuf7","summary":"OpenJDK: Triple Handshake attack against TLS/SSL connections (JSSE, 8037066)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-6457.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-6457.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-6457","reference_id":"","reference_type":"","scores":[{"value":"0.09411","scoring_system":"epss","scoring_elements":"0.92925","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-6457"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6457","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6457"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6502","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6502"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6504","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6504"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6506","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6506"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6511","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6511"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6512","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6512"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6517","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6517"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6519","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6519"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6531","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6531"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6558","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6558"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1151046","reference_id":"1151046","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1151046"},{"reference_url":"https://security.gentoo.org/glsa/201502-12","reference_id":"GLSA-201502-12","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201502-12"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1620","reference_id":"RHSA-2014:1620","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1620"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1633","reference_id":"RHSA-2014:1633","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1633"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1634","reference_id":"RHSA-2014:1634","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1634"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1636","reference_id":"RHSA-2014:1636","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1636"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1657","reference_id":"RHSA-2014:1657","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1657"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1658","reference_id":"RHSA-2014:1658","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1658"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1876","reference_id":"RHSA-2014:1876","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1876"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1877","reference_id":"RHSA-2014:1877","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1877"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1880","reference_id":"RHSA-2014:1880","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1880"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1881","reference_id":"RHSA-2014:1881","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1881"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1882","reference_id":"RHSA-2014:1882","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1882"},{"reference_url":"https://access.redhat.com/errata/RHSA-2015:0264","reference_id":"RHSA-2015:0264","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2015:0264"},{"reference_url":"https://usn.ubuntu.com/2386-1/","reference_id":"USN-2386-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2386-1/"},{"reference_url":"https://usn.ubuntu.com/2388-1/","reference_id":"USN-2388-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2388-1/"},{"reference_url":"https://usn.ubuntu.com/2388-2/","reference_id":"USN-2388-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2388-2/"}],"fixed_packages":[],"aliases":["CVE-2014-6457"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xnq6-47vx-yuf7"}],"fixing_vulnerabilities":[],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.6.0-openjdk@1:1.6.0.33-1.13.5.0%3Farch=el5_11"}