CVE-2014-3065

IBM Java Runtime Environment Local Code Execution via Shared Classes Cache

Title source: llm
STIX 2.1

Description

Unspecified vulnerability in IBM Java Runtime Environment (JRE) 7 R1 before SR2 (7.1.2.0), 7 before SR8 (7.0.8.0), 6 R1 before SR8 FP2 (6.1.8.2), 6 before SR16 FP2 (6.0.16.2), and before SR16 FP8 (5.0.16.8) allows local users to execute arbitrary code via vectors related to the shared classes cache.

References (17)

Core 17
Core References
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2014-1880.html
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2014-1877.html
Vendor Advisory vendor-advisory x_refsource_aixapar
http://www-01.ibm.com/support/docview.wss?uid=swg1IV66045
Vendor Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21688283
Vendor Advisory vendor-advisory x_refsource_aixapar
http://www-01.ibm.com/support/docview.wss?uid=swg1IV66044
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2014-1881.html
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2014-1876.html
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2015-0264.html
Issue Tracking x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=1162554
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2014-1882.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/71147

Scores

EPSS 0.0056
EPSS Percentile 42.3%

Details

CWE
CWE-94
Status published
Products (46)
ibm/java 5.0.0.0
ibm/java 5.0.11.0
ibm/java 5.0.11.1
ibm/java 5.0.11.2
ibm/java 5.0.12.0
ibm/java 5.0.12.1
ibm/java 5.0.12.2
ibm/java 5.0.12.3
ibm/java 5.0.12.4
ibm/java 5.0.12.5
... and 36 more
Published Dec 02, 2014
Tracked Since Feb 18, 2026