Vulnerability Description
Unspecified vulnerability in the IBM Java Virtual Machine, as used in IBM WebSphere Real Time 3 before Service Refresh 7 FP1 and other products, allows remote attackers to gain privileges by leveraging the ability to execute code in the context of a security manager.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Lotus Notes | 8.5.3.0 |
| Ibm | Lotus Domino | 8.5.3.0 |
| Ibm | Websphere Real Time | 3.0 |
References
- http://secunia.com/advisories/59680
- http://secunia.com/advisories/60081
- http://secunia.com/advisories/60317
- http://secunia.com/advisories/60622
- http://secunia.com/advisories/61577
- http://secunia.com/advisories/61640
- http://www-01.ibm.com/support/docview.wss?uid=swg1IV62634Vendor Advisory
- http://www-01.ibm.com/support/docview.wss?uid=swg21680333Vendor Advisory
- http://www-01.ibm.com/support/docview.wss?uid=swg21680334
- http://www-01.ibm.com/support/docview.wss?uid=swg21686383
- http://www-01.ibm.com/support/docview.wss?uid=swg21686824
- http://www.securityfocus.com/bid/69183
- https://exchange.xforce.ibmcloud.com/vulnerabilities/94097
- http://secunia.com/advisories/59680
- http://secunia.com/advisories/60081
FAQ
What is CVE-2014-3086?
CVE-2014-3086 is a vulnerability with a CVSS score of 7.5 (HIGH). Unspecified vulnerability in the IBM Java Virtual Machine, as used in IBM WebSphere Real Time 3 before Service Refresh 7 FP1 and other products, allows remote attackers to gain privileges by leveragin...
How severe is CVE-2014-3086?
CVE-2014-3086 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2014-3086?
Check the references section above for vendor advisories and patch information. Affected products include: Ibm Lotus Notes, Ibm Lotus Domino, Ibm Websphere Real Time.