Local Code Execution Vulnerability in IBM Java Runtime Environment
CVE-2014-3065

Currently unrated

Key Information:

Vendor: IBM
Status: Java
Vendor: CVE Published:; 2 December 2014

What is CVE-2014-3065?

A vulnerability exists in specific versions of the IBM Java Runtime Environment that allows local users to execute arbitrary code. This issue is linked to problematic interactions with the shared classes cache, which may be exploited to run untrusted code within the context of the application.

References

http://rhn.redhat.com/errata/RHSA-2014-1880.html

vendor-advisoryx_refsource_REDHAT

http://rhn.redhat.com/errata/RHSA-2014-1877.html

vendor-advisoryx_refsource_REDHAT

http://www-01.ibm.com/support/docview.wss?uid=swg1IV66045

vendor-advisoryx_refsource_AIXAPAR

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 2, 2014
Vulnerability Reserved
Apr 29, 2014