CVE-2014-2398

Public on 2014-04-16
Modified on 2014-09-18
Description
Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JavaFX 2.2.51; and JRockit R27.8.1 and R28.3.1 allows remote authenticated users to affect integrity via unknown vectors related to Javadoc.
Severity
Low severity
Low
CVSS v3 Base Score
2.6
See breakdown

Affected Packages

Platform Package Release Date Advisory Status
Amazon Linux 1 java-1.6.0-openjdk 2014-04-17 ALAS-2014-326 Fixed
Amazon Linux 1 java-1.7.0-openjdk 2014-04-17 ALAS-2014-327 Fixed

CVSS Scores

Score Type Score Vector
Amazon Linux CVSSv2 2.6 AV:N/AC:H/Au:N/C:N/I:N/A:P
NVD CVSSv2 3.5 AV:N/AC:M/Au:S/C:N/I:P/A:N

References

Red Hat: CVE-2014-2398 Mitre: CVE-2014-2398