Unrated severityNVD Advisory· Published Apr 16, 2014· Updated May 6, 2026

CVE-2014-2403

Description

Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality via vectors related to JAXP.

Affected products

Oracle Corporation/Jdk3 versions
cpe:2.3:a:oracle:jdk:1.6.0:update71:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:oracle:jdk:1.6.0:update71:*:*:*:*:*:*
- cpe:2.3:a:oracle:jdk:1.7.0:update51:*:*:*:*:*:*
- cpe:2.3:a:oracle:jdk:1.8.0:-:*:*:*:*:*:*
Oracle Corporation/Jre3 versions
cpe:2.3:a:oracle:jre:1.6.0:update71:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:oracle:jre:1.6.0:update71:*:*:*:*:*:*
- cpe:2.3:a:oracle:jre:1.7.0:update51:*:*:*:*:*:*
- cpe:2.3:a:oracle:jre:1.8.0:-:*:*:*:*:*:*
Canonical/Ubuntu Linux5 versions
cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*+ 4 more
- cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:-:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:12.10:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:13.10:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*
Debian/Debian Linux3 versions
cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
osv-coords
pkg:rpm/opensuse/java-1_7_0-openjdk&distro=openSUSE%20Tumbleweed
Range: < 1.7.0.121-1.1

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

marc.infonvdIssue TrackingMailing ListThird Party Advisory
marc.infonvdIssue TrackingMailing ListThird Party Advisory
rhn.redhat.com/errata/RHSA-2014-0675.htmlnvdThird Party Advisory
rhn.redhat.com/errata/RHSA-2014-0685.htmlnvdThird Party Advisory
secunia.com/advisories/58415nvdThird Party Advisory
security.gentoo.org/glsa/glsa-201406-32.xmlnvdThird Party Advisory
security.gentoo.org/glsa/glsa-201502-12.xmlnvdThird Party Advisory
www.debian.org/security/2014/dsa-2912nvdThird Party Advisory
www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.htmlnvdVendor Advisory
www.securityfocus.com/bid/66918nvdThird Party AdvisoryVDB Entry
www.ubuntu.com/usn/USN-2187-1nvdThird Party Advisory
www.ubuntu.com/usn/USN-2191-1nvdThird Party Advisory
access.redhat.com/errata/RHSA-2014:0413nvdThird Party Advisory
access.redhat.com/errata/RHSA-2014:0414nvdThird Party Advisory

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.002
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000