VIR Vulnerability Intelligence Relay

CVE-2014-2405

critical
Published 2014-05-14 · Modified 2026-05-06
CVSS v3
CVSS v2
10.0
VIR risk
10.0

Description

Unspecified vulnerability in OpenJDK 6 before 6b31 on Debian GNU/Linux and Ubuntu 12.04 LTS and 10.04 LTS has unknown impact and attack vectors, a different vulnerability than CVE-2014-0462.

Predictions

Exploit likelihood
20%
Patch ETA

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: secalert_us@oracle.com — http://secunia.com/advisories/58415

OS impact
OSVersionStatusFixed in
ubuntu ubuntu10.04not-affected
ubuntu ubuntu12.04not-affected
debian debiannot-affected

Application impact
VendorProductVersionsFixed
oracleopenjdk1.6.0

References

Verify integrity in audit chain (admin only). AS-IS.