CVE-2014-4221 — MEDIUM (4.3)

Vulnerability Description

Unspecified vulnerability in Oracle Java SE 7u60 and 8u5 allows remote attackers to affect confidentiality via unknown vectors related to Libraries.

CVSS Score

4.3

MEDIUM

AV:N/AC:M/Au:N/C:P/I:N/A:N

Confidentiality

PARTIAL

Integrity

NONE

Availability

NONE

Affected Products

Vendor	Product	Versions
Oracle	Jdk	1.7.0
Oracle	Jre	1.7.0

References

http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00026.html
http://marc.info/?l=bugtraq&m=140852886808946&w=2
http://seclists.org/fulldisclosure/2014/Dec/23
http://secunia.com/advisories/59680
http://secunia.com/advisories/59924
http://secunia.com/advisories/59987
http://secunia.com/advisories/60081
http://secunia.com/advisories/60317
http://secunia.com/advisories/60485
http://secunia.com/advisories/60622
http://secunia.com/advisories/60812
http://secunia.com/advisories/60817
http://secunia.com/advisories/61577
http://secunia.com/advisories/61640
http://security.gentoo.org/glsa/glsa-201502-12.xml

FAQ

What is CVE-2014-4221?

CVE-2014-4221 is a vulnerability with a CVSS score of 4.3 (MEDIUM). Unspecified vulnerability in Oracle Java SE 7u60 and 8u5 allows remote attackers to affect confidentiality via unknown vectors related to Libraries.

How severe is CVE-2014-4221?

CVE-2014-4221 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2014-4221?

Check the references section above for vendor advisories and patch information. Affected products include: Oracle Jdk, Oracle Jre.