Search for vulnerabilities
Vulnerability details: VCID-d5fz-2g3n-aaae
Vulnerability ID VCID-d5fz-2g3n-aaae
Aliases CVE-2014-2420
Summary CVE-2014-2420 Oracle JDK: unspecified vulnerability fixed in 6u75, 7u55 and 8u5 (Deployment)
Status Published
Exploitability 0.5
Weighted Severity 9.0
Risk 4.5
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
rhas Critical https://access.redhat.com/errata/RHSA-2014:0412
generic_textual MODERATE https://access.redhat.com/errata/RHSA-2014:0414
rhas Critical https://access.redhat.com/errata/RHSA-2014:0486
rhas Critical https://access.redhat.com/errata/RHSA-2014:0508
rhas Critical https://access.redhat.com/errata/RHSA-2014:0705
rhas Low https://access.redhat.com/errata/RHSA-2014:0982
epss 0.00352 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.00352 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.00352 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.00352 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.00352 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.00352 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.00352 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.00352 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.00352 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.00352 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.00352 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.00402 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.00402 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.00402 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.00402 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.01719 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
epss 0.03205 https://api.first.org/data/v1/epss?cve=CVE-2014-2420
rhbs low https://bugzilla.redhat.com/show_bug.cgi?id=1088031
cvssv2 2.6 https://nvd.nist.gov/vuln/detail/CVE-2014-2420
generic_textual Low http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html
Reference id Reference type URL
http://marc.info/?l=bugtraq&m=140852886808946&w=2
http://marc.info/?l=bugtraq&m=140852974709252&w=2
https://access.redhat.com/errata/RHSA-2014:0413
https://access.redhat.com/errata/RHSA-2014:0414
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-2420.json
https://api.first.org/data/v1/epss?cve=CVE-2014-2420
http://secunia.com/advisories/60111
http://security.gentoo.org/glsa/glsa-201502-12.xml
http://www-01.ibm.com/support/docview.wss?uid=swg21672080
http://www.ibm.com/support/docview.wss?uid=swg21677387
http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html
http://www.securityfocus.com/bid/66919
1088031 https://bugzilla.redhat.com/show_bug.cgi?id=1088031
cpe:2.3:a:oracle:jdk:1.6.0:update71:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jdk:1.6.0:update71:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update51:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jdk:1.7.0:update51:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.8.0:-:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jdk:1.8.0:-:*:*:*:*:*:*
cpe:2.3:a:oracle:jre:1.6.0:update71:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jre:1.6.0:update71:*:*:*:*:*:*
cpe:2.3:a:oracle:jre:1.7.0:update51:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jre:1.7.0:update51:*:*:*:*:*:*
cpe:2.3:a:oracle:jre:1.8.0:-:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jre:1.8.0:-:*:*:*:*:*:*
CVE-2014-2420 https://nvd.nist.gov/vuln/detail/CVE-2014-2420
GLSA-201502-12 https://security.gentoo.org/glsa/201502-12
RHSA-2014:0412 https://access.redhat.com/errata/RHSA-2014:0412
RHSA-2014:0486 https://access.redhat.com/errata/RHSA-2014:0486
RHSA-2014:0508 https://access.redhat.com/errata/RHSA-2014:0508
RHSA-2014:0705 https://access.redhat.com/errata/RHSA-2014:0705
RHSA-2014:0982 https://access.redhat.com/errata/RHSA-2014:0982
No exploits are available.
Vector: AV:N/AC:H/Au:N/C:N/I:P/A:N Found at https://nvd.nist.gov/vuln/detail/CVE-2014-2420
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Exploit Prediction Scoring System (EPSS)
Percentile 0.72409
EPSS Score 0.00352
Published At Nov. 1, 2024, midnight
Date Actor Action Source VulnerableCode Version
There are no relevant records.