Remote Vulnerability in Oracle Java SE and JRockit Products
CVE-2014-6593

Currently unrated

Key Information:

Vendor: Oracle
Status: Jrockit
Vendor: CVE Published:; 21 January 2015

What is CVE-2014-6593?

An unspecified vulnerability in Oracle's Java SE and JRockit products allows remote attackers to compromise the confidentiality and integrity of the affected systems. This vulnerability relates to the Java Secure Socket Extension (JSSE) and could be exploited via various vectors. Users are strongly urged to apply the necessary updates to safeguard their systems against potential exploitation.

References

http://lists.opensuse.org/opensuse-security-announce/2015...

vendor-advisoryx_refsource_SUSE

http://www.debian.org/security/2015/dsa-3144

vendor-advisoryx_refsource_DEBIAN

http://rhn.redhat.com/errata/RHSA-2015-0136.html

vendor-advisoryx_refsource_REDHAT

EPSS Score

56% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jan 21, 2015
Vulnerability Reserved
Sep 17, 2014