CVE-2014-2398

Published: Apr 16, 2014Modified: May 6, 2026

3.5

Vector

AV:N/AC:M/Au:S/C:N/I:P/A:N

Exploitability: 6.8 / Impact: 2.9

Source: NVD

Description

Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JavaFX 2.2.51; and JRockit R27.8.1 and R28.3.1 allows remote authenticated users to affect integrity via unknown vectors related to Javadoc.

Affected (21)

Products: Canonical: Ubuntu Linux · Oracle: Javafx, Jdk, Jre, Jrockit · Debian: Debian Linux · +1 more

Show all products

Canonical: Ubuntu Linux · Oracle: Javafx, Jdk, Jre, Jrockit · Debian: Debian Linux · Ibm: Forms Viewer

1 product

4 products

1 product

1 product

Configuration A

5 vulnerable

Vulnerable Software	Affected Versions
Canonical Ubuntu Linux	Version 10.04
Canonical Ubuntu Linux	Version 12.04
Canonical Ubuntu Linux	Version 12.10
Canonical Ubuntu Linux	Version 13.10
Canonical Ubuntu Linux	Version 14.04

Configuration B

11 vulnerable

Vulnerable Software	Affected Versions
Oracle Javafx	Version 2.2.51
Oracle Jdk	Version 1.5.0 update61
Oracle Jdk	Version 1.6.0 update71
Oracle Jdk	Version 1.7.0 update51
Oracle Jdk	Version 1.8.0
Oracle Jre	Version 1.5.0 update61
Oracle Jre	Version 1.6.0 update71
Oracle Jre	Version 1.7.0 update51
Oracle Jre	Version 1.8.0
Oracle Jrockit	Version r27.8.1
Oracle Jrockit	Version r28.3.1

Configuration C

3 vulnerable

Vulnerable Software	Affected Versions
Debian Debian Linux	Version 6.0
Debian Debian Linux	Version 7.0
Debian Debian Linux	Version 8.0

Configuration D

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Ibm Forms Viewer	From 4.0.0 to 4.0.0.3
Ibm Forms Viewer	From 8.0.0 to 8.0.1.1

Running on/with	Platform Versions
Microsoft Windows	All versions

References (34)

http://marc.info/?l=bugtraq&m=140852886808946&w=2

Source: secalert_us@oracle.com

Issue TrackingMailing ListThird Party Advisory

http://marc.info/?l=bugtraq&m=140852974709252&w=2

Source: secalert_us@oracle.com

Issue TrackingMailing ListThird Party Advisory

http://rhn.redhat.com/errata/RHSA-2014-0675.html

Source: secalert_us@oracle.com

Third Party Advisory

http://rhn.redhat.com/errata/RHSA-2014-0685.html

Source: secalert_us@oracle.com

Third Party Advisory

http://secunia.com/advisories/58415

Source: secalert_us@oracle.com

Third Party Advisory

http://secunia.com/advisories/59058

Source: secalert_us@oracle.com

Third Party Advisory

http://security.gentoo.org/glsa/glsa-201406-32.xml

Source: secalert_us@oracle.com

Third Party Advisory

http://security.gentoo.org/glsa/glsa-201502-12.xml

Source: secalert_us@oracle.com

Third Party Advisory

http://www-01.ibm.com/support/docview.wss?uid=swg21672080

Source: secalert_us@oracle.com

Third Party Advisory

http://www-01.ibm.com/support/docview.wss?uid=swg21676746

Source: secalert_us@oracle.com

Broken Link

http://www.debian.org/security/2014/dsa-2912

Source: secalert_us@oracle.com

Third Party Advisory

http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html

Source: secalert_us@oracle.com

Vendor Advisory

http://www.securityfocus.com/bid/66920

Source: secalert_us@oracle.com

Third Party AdvisoryVDB Entry

http://www.ubuntu.com/usn/USN-2187-1

Source: secalert_us@oracle.com

Third Party Advisory

http://www.ubuntu.com/usn/USN-2191-1

Source: secalert_us@oracle.com

Third Party Advisory

https://access.redhat.com/errata/RHSA-2014:0413

Source: secalert_us@oracle.com

Third Party Advisory

https://access.redhat.com/errata/RHSA-2014:0414

Source: secalert_us@oracle.com

Third Party Advisory

http://marc.info/?l=bugtraq&m=140852886808946&w=2